Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need help with Trojan.Zeroaccess!inf4 virus


  • This topic is locked This topic is locked
9 replies to this topic

#1 big13oss

big13oss

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:23 PM

Posted 05 May 2013 - 10:43 PM

Hello, I've recently come cross this virus and I've heard really bad thing about it, Norton says I have to delete it manually, I've tried power eraser and Trojan.Zeroaccess Removal Tool yet nothing happens. I'm running windows 7, 64 bit, any help is appreciated. I was also told to post the following logs:

Attached File  dds.txt   29.02KB   7 downloadsAttached File  attach.txt   11.31KB   0 downloads

 



BC AdBot (Login to Remove)

 


#2 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:09:23 PM

Posted 07 May 2013 - 01:28 PM

Hi big13oss,

 

Welcome to the forum.

 

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 



#3 big13oss

big13oss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:23 PM

Posted 11 May 2013 - 10:19 PM

Hello, thank you for your reply, here's the log you asked nad the attached:
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-05-2013 01
Ran by Cecilia (administrator) on 11-05-2013 23:14:48
Running from C:\Users\Cecilia\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: French Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(COMPANYVERS_NAME) C:\PROGRA~2\MYSCRA~2\bar\1.bin\12barsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Wajam) C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Akamai Technologies, Inc.) C:\Users\Cecilia\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\LogonUI.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Akamai Technologies, Inc.) C:\Users\Cecilia\AppData\Local\Akamai\netsession_win.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Video\LogiTray.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(iMesh, Inc) C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\datamngrUI.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(VER_COMPANY_NAME) C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12brmon.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Simply Super Software) C:\Program Files (x86)\Trojan Remover\Trjscan.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Video\FxSvr2.exe
() C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Akamai Technologies, Inc.) C:\Users\Cecilia\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Cecilia\Downloads\FRST64.exe
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKCU\...\Run: [LogitechSoftwareUpdate] "C:\Program Files (x86)\Logitech\Video\ManifestEngine.exe" boot [196608 2005-01-18] (Logitech Inc.)
HKCU\...\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [3671872 2012-04-17] (DT Soft Ltd)
HKCU\...\Run: [Akamai NetSession Interface] "C:\Users\Cecilia\AppData\Local\Akamai\netsession_win.exe" [4480768 2013-01-26] (Akamai Technologies, Inc.)
HKCU\...\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart [3492504 2012-12-20] (Electronic Arts)
HKCU\...\Run: [Facebook Update] "C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2012-07-12] (Facebook Inc.)
HKCU\...\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [1635752 2013-05-03] (Valve Corporation)
HKCU\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2012-06-09] (Google Inc.)
HKCU\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [222496 2009-05-05] (Acresso Corporation)
HKCU\...\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [393216 2011-01-14] (AMD)
HKCU\...\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_Plugin.exe -update plugin [706776 2013-03-13] (Adobe Systems Incorporated)
MountPoints2: {18592625-60e8-11e1-8d0d-e06995d9fc36} - K:\setup.exe
HKLM-x32\...\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard)
HKLM-x32\...\Run: []  [x]
HKLM-x32\...\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe [656920 2011-02-01] (PDF Complete Inc)
HKLM-x32\...\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume [439568 2010-05-10] (Microsoft Corporation)
HKLM-x32\...\Run: [LogitechVideoRepair] C:\Program Files (x86)\Logitech\Video\ISStart.exe  [458752 2005-01-18] (Logitech Inc.)
HKLM-x32\...\Run: [LogitechVideoTray] C:\Program Files (x86)\Logitech\Video\LogiTray.exe [217088 2005-01-18] (Logitech Inc.)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide [2793304 2009-10-14] ()
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-01-28] (Apple Inc.)
HKLM-x32\...\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [WorksFUD] C:\Program Files (x86)\Microsoft Works\wkfud.exe [24576 2000-07-12] (Microsoft® Corporation)
HKLM-x32\...\Run: [Microsoft Works Portfolio] C:\Program Files (x86)\Microsoft Works\WksSb.exe /AllUsers [749568 2005-08-18] (Microsoft® Corporation)
HKLM-x32\...\Run: [Microsoft Works Update Detection] C:\Program Files (x86)\Microsoft Works\WkDetect.exe [28739 2000-08-03] (Microsoft® Corporation)
HKLM-x32\...\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [1561768 2012-05-04] (Ask)
HKLM-x32\...\Run: [DATAMNGR] C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\DATAMN~1.EXE [1823184 2012-06-06] (iMesh, Inc)
HKLM-x32\...\Run: [IndexSearch] "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe" [46368 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe" [29984 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini" [328992 2010-02-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.)
HKLM-x32\...\Run: [My Scrap Nook Search Scope Monitor] "C:\PROGRA~2\MYSCRA~2\bar\1.bin\12srchmn.exe" /m=2 /w /h [42536 2012-12-23] (MindSpark)
HKLM-x32\...\Run: [MyScrapNook_12 Browser Plugin Loader] C:\PROGRA~2\MYSCRA~2\bar\1.bin\12brmon.exe [30096 2012-12-23] (VER_COMPANY_NAME)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152392 2013-02-20] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [TrojanScanner] C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot [1648400 2013-04-26] (Simply Super Software)
HKU\Invité\...\Run: [LogitechSoftwareUpdate] "C:\Program Files (x86)\Logitech\Video\ManifestEngine.exe" boot [196608 2005-01-18] (Logitech Inc.)
HKU\Invité\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.)
HKU\Invité\...\Run: [Facebook Update] "C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2012-07-12] (Facebook Inc.)
HKU\Invité\...\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [1635752 2013-05-03] (Valve Corporation)
HKU\Invité\...\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [3671872 2012-04-17] (DT Soft Ltd)
HKU\Invité\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2012-06-09] (Google Inc.)
HKU\Invité\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [222496 2009-05-05] (Acresso Corporation)
HKU\Invité\...\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [393216 2011-01-14] (AMD)
AppInit_DLLs: C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll  [1528744 2012-06-06] (iMesh, Inc)
Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ca.msn.com/defaultf.aspx?ocid=OIE9HP
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ca.msn.com/defaultf.aspx?ocid=OIE9HP
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
URLSearchHook: (No Name) - {ef79f67a-6ad7-4715-a0f8-932fca442023} -  No File
HKLM SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=107&systemid=2&apn_dtid=IME002&apn_ptnrs=AG2&o=APN10641&apn_uid=5353910212224208&q={searchTerms}
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchTerms}&l=dis&o=HPDTDF
SearchScopes: HKLM - {4A54A433-51F0-460E-85F6-C1D9FABC28BE} URL = http://www.amazon.ca/s/ref=azs_osd_ieaca?ie=UTF-8&tag=hp-ca1-vsb-20&link_code=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=107&systemid=2&apn_dtid=IME002&apn_ptnrs=AG2&o=APN10641&apn_uid=5353910212224208&q={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://qc.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}
HKLM-x32 SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=107&systemid=2&apn_dtid=IME002&apn_ptnrs=AG2&o=APN10641&apn_uid=5353910212224208&q={searchTerms}
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchTerms}&l=dis&o=HPDTDF
SearchScopes: HKLM-x32 - {4A54A433-51F0-460E-85F6-C1D9FABC28BE} URL = http://www.amazon.ca/s/ref=azs_osd_ieaca?ie=UTF-8&tag=hp-ca1-vsb-20&link_code=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=107&systemid=2&apn_dtid=IME002&apn_ptnrs=AG2&o=APN10641&apn_uid=5353910212224208&q={searchTerms}
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://qc.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchTerms}&l=dis&o=HPDTDF
SearchScopes: HKCU - {4A54A433-51F0-460E-85F6-C1D9FABC28BE} URL = http://www.amazon.ca/s/ref=azs_osd_ieaca?ie=UTF-8&tag=hp-ca1-vsb-20&link_code=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKCU - {5D01AD57-0C16-436D-A3F5-5BF5D14E3DC6} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=&apn_dtid=OSJ000&apn_uid=492DC286-2E25-4AE5-A1DB-82D83633A0C8&apn_sauid=73683AE1-7163-4842-AF41-F20E9A456958
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = http://dts.search-results.com/sr?src=ieb&appid=0&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKCU - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://qc.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKCU - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: DataMngr - {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\BROWSE~1.DLL (iMesh, Inc)
BHO-x32: Toolbar BHO - {0214754e-4e7d-4589-829d-e2523e6a3085} - C:\PROGRA~2\MYSCRA~2\bar\1.bin\12bar.dll (MindSpark)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Deals Plugin Extension - {11111111-1111-1111-1111-110211181106} - C:\Program Files (x86)\Deals Plugin Extension\Deals Plugin Extension.dll (215 Apps)
BHO-x32: Search-Results Toolbar - {15a0413e-9f45-4d45-9a75-2c20b15b5b51} - C:\PROGRA~2\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll (APN LLC)
BHO-x32: WiseConvert B Toolbar - {2713b394-286f-4d7c-89ea-4174eeab9f5a} - C:\Program Files (x86)\WiseConvert_B\prxtbWise.dll (Conduit Ltd.)
BHO-x32: Wincore Mediabar - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll ()
BHO-x32: FLV Runner Toolbar - {3bbd3c14-4c16-4989-8366-95bc9179779d} - C:\Program Files (x86)\FLV_Runner\prxtbFLV_.dll (Conduit Ltd.)
BHO-x32: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO-x32: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll (Symantec Corporation)
BHO-x32: Search Assistant BHO - {65f159fb-5f5e-46f4-b45d-ccfa236d2073} - C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12SrcAs.dll (MindSpark)
BHO-x32: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: DataMngr - {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\BROWSE~1.DLL (iMesh, Inc)
BHO-x32: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: BittorrentBar_FR Toolbar - {ef79f67a-6ad7-4715-a0f8-932fca442023} - C:\Program Files (x86)\BittorrentBar_FR\prxtbBit0.dll (Conduit Ltd.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - BittorrentBar_FR Toolbar - {ef79f67a-6ad7-4715-a0f8-932fca442023} - C:\Program Files (x86)\BittorrentBar_FR\prxtbBit0.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Wincore Mediabar - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll ()
Toolbar: HKLM-x32 - FLV Runner Toolbar - {3bbd3c14-4c16-4989-8366-95bc9179779d} - C:\Program Files (x86)\FLV_Runner\prxtbFLV_.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - My Scrap Nook - {fe6f06fb-0fc0-4499-828f-ee48088f504f} - C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12bar.dll (MindSpark)
Toolbar: HKLM-x32 - Search-Results Toolbar - {15a0413e-9f45-4d45-9a75-2c20b15b5b51} - C:\PROGRA~2\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll (APN LLC)
Toolbar: HKLM-x32 - WiseConvert B Toolbar - {2713b394-286f-4d7c-89ea-4174eeab9f5a} - C:\Program Files (x86)\WiseConvert_B\prxtbWise.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Toolbar: HKCU - No Name - {EF79F67A-6AD7-4715-A0F8-932FCA442023} -  No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
PDF: HKLM-x32 {B8BE5E93-A60C-4D26-A2DC-220313175592} http://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
PDF: HKLM-x32 {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} http://zone.msn.com/bingame/zpagames/zpa_kqrp.cab56961.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [20992] (Microsoft Corporation)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 
FireFox:
========
FF ProfilePath: C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default
FF SelectedSearchEngine: Google
FF Homepage: youtube.com
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2849852&SearchSource=2&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpWinExt,version=5.0 - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @MyScrapNook_12.com/Plugin - C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\NP12Stub.dll (MindSpark)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\5\NP_wtapp.dll ()
FF Extension: My Scrap Nook - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\12ffxtbr@MyScrapNook_12.com
FF Extension: No Name - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\extension21806@extension21806.com
FF Extension: No Name - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\staged
FF Extension: Ask Toolbar - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\toolbar@ask.com
FF Extension: Search-Results Toolbar - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\{15a0413e-9f45-4d45-9a75-2c20b15b5b51}
FF Extension: Wincore Mediabar - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}
FF Extension: WOT - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: BittorrentBar_FR Community Toolbar - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\{ef79f67a-6ad7-4715-a0f8-932fca442023}
FF Extension: No Name - C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll ()
CHR Plugin: (Skype Click to Call) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\npSkypeChromePlugin.dll (Skype Technologies S.A.)
CHR Plugin: (TorchPlugin) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\kiplfnciaokpcennlkldkdaeaaomamof\1.0.0.2023_0\plugin/torchplugin.dll (Torch)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 6 U35) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Bing Bar) - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
CHR Plugin: (MindSpark Toolbar Platform Plugin Stub) - C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\NP12Stub.dll (MindSpark)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
CHR Plugin: (WildTangent Games App V2 Presence Detector) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\5\NP_wtapp.dll ()
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Unity Player) - C:\Users\Cecilia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.350.10) - C:\Windows\SysWOW64\npdeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (BittorrentBar_FR) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhjaoldnkkbifioodjndkijecdeinld\2.3.19.11_0
CHR Extension: (AdBlock) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.63_0
CHR Extension: (Wajam) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0
CHR Extension: (Torch Share) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\kiplfnciaokpcennlkldkdaeaaomamof\1.0.0.2023_0
CHR Extension: (Skype Click to Call) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0
CHR Extension: (Gmail) - C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
 
==================== Services (Whitelisted) =================
 
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2012-08-21] (BioWare)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 MyScrapNook_12Service; C:\PROGRA~2\MYSCRA~2\bar\1.bin\12barsvc.exe [42504 2012-12-23] (COMPANYVERS_NAME)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\diMaster.dll [262584 2011-03-31] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1127448 2011-02-01] (PDF Complete Inc)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-12-11] ()
R2 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2012-10-05] (Wajam)
 
==================== Drivers (Whitelisted) ====================
 
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20130502.001\BHDrvx64.sys [1390680 2013-04-12] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-06-03] (DT Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-01-06] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2013-01-06] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20130510.001\IDSvia64.sys [513184 2013-05-01] (Symantec Corporation)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20130511.005\ENG64.SYS [126192 2013-05-02] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20130511.005\EX64.SYS [2087664 2013-05-02] (Symantec Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2011-12-18] (Symantec Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
R1 SRTSP; \SystemRoot\System32\Drivers\N360x64\0502020.003\SRTSP64.SYS [x]
R1 SRTSPX; \SystemRoot\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS [x]
R0 SymDS; system32\drivers\N360x64\0502020.003\SYMDS64.SYS [x]
R0 SymEFA; system32\drivers\N360x64\0502020.003\SYMEFA64.SYS [x]
R1 SymIRON; \SystemRoot\system32\drivers\N360x64\0502020.003\Ironx64.SYS [x]
R1 SymNetS; \SystemRoot\System32\Drivers\N360x64\0502020.003\SYMNETS.SYS [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2013-05-11 23:14 - 2013-05-11 23:14 - 01875978 ____A (Farbar) C:\Users\Cecilia\Downloads\FRST64.exe
2013-05-11 23:14 - 2013-05-11 23:14 - 00000000 ____D C:\FRST
2013-05-05 23:43 - 2013-05-05 23:43 - 00029713 ____A C:\Users\Cecilia\Downloads\dds.txt
2013-05-05 23:39 - 2013-05-05 23:41 - 00011586 ____A C:\Users\Cecilia\Desktop\attach.txt
2013-05-05 23:39 - 2013-05-05 23:40 - 00029713 ____A C:\Users\Cecilia\Desktop\dds.txt
2013-05-05 23:39 - 2013-05-05 23:39 - 00688992 ____A (Swearware) C:\Users\Cecilia\Downloads\dds (2).com
2013-05-05 23:38 - 2013-05-05 23:38 - 00688992 ____R (Swearware) C:\Users\Cecilia\Downloads\dds (1).com
2013-05-05 23:37 - 2013-05-05 23:37 - 00688992 ____R (Swearware) C:\Users\Cecilia\Downloads\dds.com
2013-05-03 22:15 - 2013-05-03 22:16 - 05064153 ____A (Swearware) C:\Users\Cecilia\Downloads\ComboFix.exe
2013-05-03 22:08 - 2013-05-03 22:09 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Cecilia\Desktop\iexplore.exe.exe
2013-05-03 21:13 - 2013-05-03 21:13 - 00000000 ____D C:\Users\utilisateur\Documents\Simply Super Software
2013-05-03 17:44 - 2013-05-03 17:46 - 04745728 ____A (AVAST Software) C:\Users\Cecilia\Downloads\aswMBR.exe
2013-05-03 08:12 - 2013-05-03 08:14 - 00027256 ____A (Symantec Corporation) C:\Windows\System32\Drivers\FixZeroAccess.sys
2013-05-03 08:08 - 2013-05-03 08:08 - 01805736 ____A (Symantec Corporation) C:\Users\Cecilia\Downloads\FixZeroAccess.exe
2013-05-03 07:47 - 2013-05-03 08:09 - 00000000 ____D C:\Users\Cecilia\AppData\Local\NPE
2013-05-03 07:46 - 2013-05-03 07:47 - 02986440 ____A (Symantec Corporation) C:\Users\Cecilia\Downloads\NPE.exe
2013-05-03 03:30 - 2013-05-11 23:10 - 00004928 ____A C:\Windows\setupact.log
2013-05-03 03:30 - 2013-05-03 03:30 - 00000000 ____A C:\Windows\setuperr.log
2013-05-03 03:29 - 2013-05-07 21:42 - 00004690 ____A C:\Windows\PFRO.log
2013-05-03 03:06 - 2013-05-03 03:06 - 02046464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 01766912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 01129984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-03 03:06 - 2013-05-03 03:06 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-05-03 03:06 - 2013-05-03 03:06 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 19230208 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 14323200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 13761024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-05-03 03:05 - 2013-05-03 03:05 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-03 03:05 - 2013-05-03 03:05 - 02647040 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 02240512 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-03 03:05 - 2013-05-03 03:05 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-03 03:05 - 2013-05-03 03:05 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-03 03:05 - 2013-05-03 03:05 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-03 03:05 - 2013-05-03 03:05 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-03 03:05 - 2013-05-03 03:05 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-03 03:05 - 2013-05-03 03:05 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-03 03:05 - 2013-05-03 03:05 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-03 03:05 - 2013-05-03 03:05 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-03 03:03 - 2013-05-03 03:12 - 00009376 ____A C:\Windows\IE10_main.log
2013-05-02 23:37 - 2013-05-02 23:37 - 00000000 ____D C:\Windows\SysWOW64\N360_BACKUP
2013-05-02 23:31 - 2013-05-02 23:31 - 00001159 ____A C:\Users\Cecilia\Desktop\Trojan Remover .lnk
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\Users\Cecilia\Documents\Simply Super Software
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\Simply Super Software
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\Program Files (x86)\Trojan Remover
2013-05-02 23:29 - 2013-05-02 23:30 - 16825024 ____A (Simply Super Software                                       ) C:\Users\Cecilia\Downloads\trjsetup686.exe
2013-05-02 19:45 - 2013-05-02 19:45 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Tific
2013-05-02 19:44 - 2013-05-02 19:44 - 00000000 ____D C:\Users\utilisateur\AppData\Local\Symantec
2013-05-02 19:43 - 2013-05-02 19:43 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\Tific
2013-05-02 19:43 - 2013-05-02 19:43 - 00000000 ____D C:\Users\Cecilia\AppData\Local\Symantec
2013-05-02 13:46 - 2013-05-02 13:47 - 00000000 ____D C:\Program Files (x86)\Collection World of Warcraft
2013-05-02 12:37 - 2013-05-02 12:37 - 00024996 ____A C:\Users\Cecilia\Downloads\[isoHunt] World of Warcraft Comic.torrent
2013-04-29 19:41 - 2013-04-29 19:42 - 00000000 ____D C:\Users\utilisateur\AppData\Local\{F8FD6BDB-DCA6-4DFE-8ECC-4C377A7684B4}
2013-04-24 08:45 - 2013-04-12 10:45 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-04-23 11:14 - 2013-04-23 11:14 - 00002630 ____N C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2013-04-19 22:11 - 2013-04-19 22:12 - 02246768 ____A C:\Users\Cecilia\Downloads\elvui-5.99.zip
 
==================== One Month Modified Files and Folders =======
 
2013-05-11 23:14 - 2013-05-11 23:14 - 01875978 ____A (Farbar) C:\Users\Cecilia\Downloads\FRST64.exe
2013-05-11 23:14 - 2013-05-11 23:14 - 00000000 ____D C:\FRST
2013-05-11 23:13 - 2012-02-16 00:57 - 00000000 ____D C:\Program Files (x86)\Steam
2013-05-11 23:10 - 2013-05-03 03:30 - 00004928 ____A C:\Windows\setupact.log
2013-05-11 23:10 - 2012-06-09 18:21 - 00001074 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-05-11 23:10 - 2011-12-18 14:48 - 01818457 ____A C:\Windows\WindowsUpdate.log
2013-05-11 22:52 - 2013-01-30 20:40 - 00000000 ____A C:\END
2013-05-11 22:52 - 2011-12-26 14:30 - 00000000 ____D C:\Users\utilisateur\AppData\Local\CrashDumps
2013-05-11 22:51 - 2012-04-03 21:45 - 00001002 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-05-11 22:43 - 2012-06-09 18:21 - 00001078 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-05-11 22:31 - 2012-02-13 21:36 - 00001120 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1787416160-3442941071-922350751-1000UA.job
2013-05-11 21:20 - 2012-12-16 20:02 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Skype
2013-05-11 21:18 - 2012-02-13 21:36 - 00001098 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1787416160-3442941071-922350751-1000Core.job
2013-05-10 03:00 - 2012-05-07 11:03 - 00000356 ____A C:\Windows\Tasks\HPCeeScheduleForUTILISATEUR-HP$.job
2013-05-09 21:47 - 2012-03-14 08:30 - 00000000 ____D C:\Users\Cecilia\AppData\Local\CrashDumps
2013-05-08 08:04 - 2009-07-14 00:45 - 00024608 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-05-08 08:04 - 2009-07-14 00:45 - 00024608 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-05-07 21:44 - 2011-07-22 03:19 - 00000000 ____D C:\ProgramData\PDFC
2013-05-07 21:43 - 2009-07-14 01:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-05-07 21:42 - 2013-05-03 03:29 - 00004690 ____A C:\Windows\PFRO.log
2013-05-06 21:01 - 2012-12-13 00:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-05-06 14:40 - 2012-05-16 04:15 - 00000340 ____A C:\Windows\Tasks\HPCeeScheduleForCecilia.job
2013-05-06 10:56 - 2012-01-09 23:08 - 00000000 ____A C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-05-06 10:56 - 2011-12-24 23:45 - 00000052 ____A C:\Windows\SysWOW64\DOErrors.log
2013-05-06 10:55 - 2012-01-09 23:07 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\HpUpdate
2013-05-06 10:55 - 2012-01-09 23:07 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\HP Support Assistant
2013-05-05 23:43 - 2013-05-05 23:43 - 00029713 ____A C:\Users\Cecilia\Downloads\dds.txt
2013-05-05 23:41 - 2013-05-05 23:39 - 00011586 ____A C:\Users\Cecilia\Desktop\attach.txt
2013-05-05 23:40 - 2013-05-05 23:39 - 00029713 ____A C:\Users\Cecilia\Desktop\dds.txt
2013-05-05 23:39 - 2013-05-05 23:39 - 00688992 ____A (Swearware) C:\Users\Cecilia\Downloads\dds (2).com
2013-05-05 23:38 - 2013-05-05 23:38 - 00688992 ____R (Swearware) C:\Users\Cecilia\Downloads\dds (1).com
2013-05-05 23:37 - 2013-05-05 23:37 - 00688992 ____R (Swearware) C:\Users\Cecilia\Downloads\dds.com
2013-05-05 23:02 - 2012-12-23 19:50 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Smilebox
2013-05-05 18:51 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\rescache
2013-05-04 16:51 - 2011-07-22 02:55 - 00745508 ____A C:\Windows\System32\perfh00C.dat
2013-05-04 16:51 - 2011-07-22 02:55 - 00148768 ____A C:\Windows\System32\perfc00C.dat
2013-05-04 16:51 - 2009-07-14 01:13 - 01663262 ____A C:\Windows\System32\PerfStringBackup.INI
2013-05-03 22:16 - 2013-05-03 22:15 - 05064153 ____A (Swearware) C:\Users\Cecilia\Downloads\ComboFix.exe
2013-05-03 22:09 - 2013-05-03 22:08 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Cecilia\Desktop\iexplore.exe.exe
2013-05-03 21:13 - 2013-05-03 21:13 - 00000000 ____D C:\Users\utilisateur\Documents\Simply Super Software
2013-05-03 17:46 - 2013-05-03 17:44 - 04745728 ____A (AVAST Software) C:\Users\Cecilia\Downloads\aswMBR.exe
2013-05-03 17:38 - 2012-05-28 10:26 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\BitTorrent
2013-05-03 08:14 - 2013-05-03 08:12 - 00027256 ____A (Symantec Corporation) C:\Windows\System32\Drivers\FixZeroAccess.sys
2013-05-03 08:09 - 2013-05-03 07:47 - 00000000 ____D C:\Users\Cecilia\AppData\Local\NPE
2013-05-03 08:08 - 2013-05-03 08:08 - 01805736 ____A (Symantec Corporation) C:\Users\Cecilia\Downloads\FixZeroAccess.exe
2013-05-03 07:47 - 2013-05-03 07:46 - 02986440 ____A (Symantec Corporation) C:\Users\Cecilia\Downloads\NPE.exe
2013-05-03 07:47 - 2011-07-22 03:22 - 00000000 ____D C:\ProgramData\Norton
2013-05-03 03:30 - 2013-05-03 03:30 - 00000000 ____A C:\Windows\setuperr.log
2013-05-03 03:30 - 2011-02-11 13:00 - 00000000 ____D C:\Windows\Panther
2013-05-03 03:28 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-05-03 03:12 - 2013-05-03 03:03 - 00009376 ____A C:\Windows\IE10_main.log
2013-05-03 03:06 - 2013-05-03 03:06 - 02046464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 01766912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 01129984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-05-03 03:06 - 2013-05-03 03:06 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-05-03 03:06 - 2013-05-03 03:06 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-05-03 03:06 - 2013-05-03 03:06 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 19230208 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 14323200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 13761024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-05-03 03:05 - 2013-05-03 03:05 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-03 03:05 - 2013-05-03 03:05 - 02647040 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 02240512 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-03 03:05 - 2013-05-03 03:05 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-03 03:05 - 2013-05-03 03:05 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-05-03 03:05 - 2013-05-03 03:05 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-05-03 03:05 - 2013-05-03 03:05 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-05-03 03:05 - 2013-05-03 03:05 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-05-03 03:05 - 2013-05-03 03:05 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-05-03 03:05 - 2013-05-03 03:05 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-05-03 03:05 - 2013-05-03 03:05 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-05-03 03:05 - 2013-05-03 03:05 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-05-03 03:05 - 2013-05-03 03:05 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-05-02 23:37 - 2013-05-02 23:37 - 00000000 ____D C:\Windows\SysWOW64\N360_BACKUP
2013-05-02 23:31 - 2013-05-02 23:31 - 00001159 ____A C:\Users\Cecilia\Desktop\Trojan Remover .lnk
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\Users\Cecilia\Documents\Simply Super Software
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\Simply Super Software
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-05-02 23:31 - 2013-05-02 23:31 - 00000000 ____D C:\Program Files (x86)\Trojan Remover
2013-05-02 23:30 - 2013-05-02 23:29 - 16825024 ____A (Simply Super Software                                       ) C:\Users\Cecilia\Downloads\trjsetup686.exe
2013-05-02 19:45 - 2013-05-02 19:45 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Tific
2013-05-02 19:44 - 2013-05-02 19:44 - 00000000 ____D C:\Users\utilisateur\AppData\Local\Symantec
2013-05-02 19:43 - 2013-05-02 19:43 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\Tific
2013-05-02 19:43 - 2013-05-02 19:43 - 00000000 ____D C:\Users\Cecilia\AppData\Local\Symantec
2013-05-02 14:19 - 2012-05-29 00:37 - 00000000 ____D C:\bittorrent
2013-05-02 14:18 - 2012-01-09 20:13 - 00000000 ____D C:\users\Cecilia
2013-05-02 14:18 - 2011-12-24 23:57 - 00000356 ____A C:\Windows\Tasks\HPCeeScheduleForutilisateur.job
2013-05-02 14:16 - 2012-06-14 22:16 - 00000000 ____D C:\Users\Cecilia\AppData\Local\Akamai
2013-05-02 14:16 - 2012-01-07 16:39 - 00000000 ____D C:\users\Invité
2013-05-02 14:16 - 2011-12-25 00:09 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-05-02 14:16 - 2011-12-18 14:50 - 00000000 ____D C:\users\utilisateur
2013-05-02 14:16 - 2009-07-14 01:32 - 00000000 ____D C:\Windows\Offline Web Pages
2013-05-02 14:16 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\registration
2013-05-02 14:16 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\AppCompat
2013-05-02 14:16 - 2009-07-13 23:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-05-02 14:15 - 2012-02-06 11:51 - 00000000 ____D C:\Users\Cecilia\AppData\Roaming\SoftGrid Client
2013-05-02 13:47 - 2013-05-02 13:46 - 00000000 ____D C:\Program Files (x86)\Collection World of Warcraft
2013-05-02 12:37 - 2013-05-02 12:37 - 00024996 ____A C:\Users\Cecilia\Downloads\[isoHunt] World of Warcraft Comic.torrent
2013-04-29 19:42 - 2013-04-29 19:41 - 00000000 ____D C:\Users\utilisateur\AppData\Local\{F8FD6BDB-DCA6-4DFE-8ECC-4C377A7684B4}
2013-04-29 10:52 - 2011-12-24 23:44 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\HP Support Assistant
2013-04-29 10:52 - 2011-12-24 23:24 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\HpUpdate
2013-04-29 09:16 - 2012-03-19 14:58 - 00000000 ____D C:\Users\Cecilia\Desktop\matias
2013-04-26 23:53 - 2011-12-24 23:58 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-04-23 11:14 - 2013-04-23 11:14 - 00002630 ____N C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2013-04-23 11:14 - 2012-12-16 23:17 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\WildTangent
2013-04-19 22:12 - 2013-04-19 22:11 - 02246768 ____A C:\Users\Cecilia\Downloads\elvui-5.99.zip
2013-04-19 09:23 - 2009-07-14 01:08 - 00032482 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-04-12 10:45 - 2013-04-24 08:45 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2013-04-11 13:38 - 2012-06-09 18:42 - 00002185 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-04-11 03:22 - 2009-07-14 00:45 - 00420464 ____A C:\Windows\System32\FNTCACHE.DAT
2013-04-11 03:02 - 2011-12-18 16:10 - 72702784 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
 
ZeroAccess:
C:\Windows\Installer\{3265e3f5-ec3d-5857-89a9-18deb64e1d93}
C:\Windows\Installer\{3265e3f5-ec3d-5857-89a9-18deb64e1d93}\L
C:\Windows\Installer\{3265e3f5-ec3d-5857-89a9-18deb64e1d93}\U
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
Last Boot: 2013-05-05 15:47
 
==================== End Of Log ============================



and here's tha attached file:

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-05-2013 01
Ran by Cecilia at 2013-05-11 23:15:43 Run:
Running from C:\Users\Cecilia\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Installed Programs =======================
 
 Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe AIR (Version: 1.5.3.9130)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
Akamai NetSession Interface
AMD Accelerated Video Transcoding (Version: 12.5.100.21219)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.903.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.71219.1540)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.2.0)
Ask Toolbar Updater (Version: 1.2.0.20007)
Assassin's Creed Revelations (Version: 1.00)
AVS Update Manager 1.0
AVS Video Converter 8
AVS4YOU Software Navigator 1.4
Batman: Arkham Asylum GOTY Edition
Batman: Arkham City™
Battlefield 3™ (Version: 1.0.0.0)
Battlelog Web Plugins (Version: 1.122.0)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bejeweled 3 (Version: 2.2.0.95)
Bing Bar (Version: 6.0.2282.0)
Bing Bar Platform (Version: 6.0.2282.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
BitTorrent (Version: 7.6.1)
BittorrentBar_FR Toolbar (Version: 6.9.0.16)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.95)
Blio (Version: 2.2.6699)
Bonjour (Version: 3.0.0.10)
Borderlands
Bounce Symphony (Version: 2.2.0.95)
Build-a-lot 2 (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.1219.1521.27485)
Catalyst Control Center Graphics Previews Common (Version: 2012.1219.1521.27485)
Catalyst Control Center InstallProxy (Version: 2012.1219.1521.27485)
Catalyst Control Center Localization All (Version: 2012.1219.1521.27485)
CCC Help Chinese Standard (Version: 2012.1219.1520.27485)
CCC Help Chinese Traditional (Version: 2012.1219.1520.27485)
CCC Help Czech (Version: 2012.1219.1520.27485)
CCC Help Danish (Version: 2012.1219.1520.27485)
CCC Help Dutch (Version: 2012.1219.1520.27485)
CCC Help English (Version: 2012.1219.1520.27485)
CCC Help Finnish (Version: 2012.1219.1520.27485)
CCC Help French (Version: 2012.1219.1520.27485)
CCC Help German (Version: 2012.1219.1520.27485)
CCC Help Greek (Version: 2012.1219.1520.27485)
CCC Help Hungarian (Version: 2012.1219.1520.27485)
CCC Help Italian (Version: 2012.1219.1520.27485)
CCC Help Japanese (Version: 2012.1219.1520.27485)
CCC Help Korean (Version: 2012.1219.1520.27485)
CCC Help Norwegian (Version: 2012.1219.1520.27485)
CCC Help Polish (Version: 2012.1219.1520.27485)
CCC Help Portuguese (Version: 2012.1219.1520.27485)
CCC Help Russian (Version: 2012.1219.1520.27485)
CCC Help Spanish (Version: 2012.1219.1520.27485)
CCC Help Swedish (Version: 2012.1219.1520.27485)
CCC Help Thai (Version: 2012.1219.1520.27485)
CCC Help Turkish (Version: 2012.1219.1520.27485)
ccc-utility64 (Version: 2012.1219.1521.27485)
CCleaner (Version: 3.25)
Chuzzle Deluxe (Version: 2.2.0.95)
Coffret de pilotes Logitech Webcam Software (Version: 12.10.1110)
ComicRack v0.9.154 (Version: v0.9.154)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.4.0315)
Deals Plugin Extension (Version: 1.26.152.152)
Deus Ex
Diablo III (Version: 1.0.3.10057)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dinner Date
Dora's World Adventure (Version: 2.2.0.95)
Dragon Age: Origins - Ultimate Edition
Dual-Core Optimizer (Version: 1.1.4.0169)
ESN Sonar (Version: 0.70.4)
Fable - The Lost Chapters
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Far Cry 2
Far Cry 3 (Version: 1.02)
Farm Frenzy (Version: 2.2.0.95)
FATE - The Traitor Soul (Version: 2.2.0.82)
Final Drive Nitro (Version: 2.2.0.95)
FLV Runner Toolbar (Version: 6.9.0.16)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
GDMO
Google Chrome (Version: 26.0.1410.64)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.145)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.2.4)
HP LinkUp (Version: 2.01.028)
HP Odometer (Version: 2.10.0000)
HP Product Detection (Version: 11.14.0001)
HP Setup Manager (Version: 1.1.13253.3682)
HP Support Assistant (Version: 7.0.39.15)
HP Support Information (Version: 10.1.1000)
HP Update (Version: 5.002.003.003)
HydraVision (Version: 4.2.184.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
iTunes (Version: 11.0.2.26)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Junk Mail filter update (Version: 15.4.3502.0922)
Just Cause 2
LabelPrint (Version: 2.5.3609)
League of Legends (Version: 1.3)
Left 4 Dead 2
LightScribe System Software (Version: 1.18.20.1)
Logiciel QuickCam de Logitech (Version: 8.41.0000)
Logitech Print Service
Logitech Vid HD (Version: 7.2 (7259))
Logitech Webcam Software (Version: 12.10.1113)
Mah Jong Medley (Version: 2.2.0.95)
Manga Studio EX 4.0
McAfee Security Scan Plus (Version: 3.0.318.3)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office « Démarrer en un clic » 2010 (Version: 14.0.4763.1000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher 2007 (Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Starter 2010 - Français (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 08.05.0818)
Microsoft Works 6.0 (Version: 06.00.0000)
MotioninJoy DS3 driver version 0.6.0005 (Version: 0.6.0005)
Mozilla Firefox 20.0 (x86 en-US) (Version: 20.0)
Mozilla Maintenance Service (Version: 20.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
My Scrap Nook Toolbar
Mystery P.I. - Stolen in San Francisco (Version: 2.2.0.95)
Namco All-Stars PAC-MAN (Version: 2.2.0.95)
Nexus Mod Manager (Version: 0.42.0)
Norton 360 (Version: 5.2.2.3)
Norton Online Backup (Version: 2.1.17869)
Nuance PaperPort 12 (Version: 12.1.0000)
Nuance PDF Viewer Plus (Version: 5.30.3290)
NVIDIA PhysX (Version: 9.10.0513)
ooVoo (Version: 3.5.6034)
OpenAL
Origin (Version: 9.0.2.2064)
Pando Media Booster (Version: 2.6.0.6)
PaperPort Image Printer 64-bit (Version: 1.00.0001)
PAYDAY: The Heist
PDF Complete Special Edition (Version: 4.0.35)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Power2Go (Version: 6.1.4817)
PressReader (Version: 5.10.1217.0)
PunkBuster Services (Version: 0.993)
QuickTime (Version: 7.73.80.64)
Realtek High Definition Audio Driver (Version: 6.0.1.6387)
Recovery Manager (Version: 5.5.3621)
RomStation
Saints Row: The Third
Scansoft PDF Professional
Search-Results Toolbar (Version: 1.2.0.0)
Skype Click to Call (Version: 6.3.11079)
Skype™ 6.0 (Version: 6.0.126)
Slingo Supreme (Version: 2.2.0.95)
Star Wars: Knights of the Old Republic II
Star Wars: The Old Republic (Version: 1.00)
Steam (Version: 1.0.0.0)
System Requirements Lab CYRI (Version: 4.5.1.0)
Team Fortress 2
The Sims 2 Family Fun Stuff
The Sims 2 Glamour Life Stuff
The Sims 2 Open For Business
The Sims 2 Pets
The Sims 2 Seasons
The Sims 2 University
The Sims™ 2 Apartment Life
The Sims™ 2 Bon Voyage
The Sims™ 2 Double Deluxe
The Sims™ 2 FreeTime
The Sims™ 2 H&M® Fashion Stuff
The Sims™ 2 IKEA® Home Stuff
The Sims™ 2 Kitchen & Bath Interior Design Stuff
The Sims™ 2 Mansion and Garden Stuff
The Sims™ 2 Teen Style Stuff
The Witcher: Enhanced Edition
Trojan Remover 6.8.6 (Version: 6.8.6)
Two Worlds II
Ubisoft Game Launcher (Version: 1.0.0.0)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update Installer for WildTangent Games App
Uplay (Version: 2.0)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
Visionneuse Microsoft PowerPoint (Version: 14.0.6029.1000)
Wajam (Version: 1.51)
WildTangent Games App (HP Games) (Version: 4.0.10.5)
WildTangent Games App (Version: 4.0.10.5)
Wincore MediaBar (Version: 4.0.0.2790)
Windows Live (Version: 15.4.3502.0922)
Windows Live (Version: 15.4.3555.0308)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
WiseConvert B Toolbar (Version: 6.10.3.27)
World of Warcraft (Version: 5.2.0.16826)
Zinio Reader 4 (Version: 4.0.3184)
Zuma Deluxe (Version: 2.2.0.95)
 
==================== Restore Points  =========================
 
07-05-2013 07:00:30 Windows Update
08-05-2013 07:00:26 Windows Update
09-05-2013 07:00:24 Windows Update
10-05-2013 07:00:56 Windows Update
11-05-2013 07:00:24 Windows Update
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (05/11/2013 10:51:57 PM) (Source: Application Error) (User: )
Description: Nom de l’application défaillante rundll32.exe_inetcpl.cpl, version : 6.1.7600.16385, horodatage : 0x4a5bc9e0
Nom du module défaillant : IEBHO.dll, version : 3.0.0.2790, horodatage : 0x4fcf269e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000874f8
ID du processus défaillant : 0x50b0
Heure de début de l’application défaillante : 0xrundll32.exe_inetcpl.cpl0
Chemin d’accès de l’application défaillante : rundll32.exe_inetcpl.cpl1
Chemin d’accès du module défaillant: rundll32.exe_inetcpl.cpl2
ID de rapport : rundll32.exe_inetcpl.cpl3
 
Error: (05/11/2013 09:28:38 PM) (Source: Application Error) (User: )
Description: Nom de l’application défaillante conhost.exe, version : 6.1.7601.18015, horodatage : 0x50b826c0
Nom du module défaillant : ntdll.dll, version : 6.1.7601.17725, horodatage : 0x4ec4aa8e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000009970a
ID du processus défaillant : 0x2a3c
Heure de début de l’application défaillante : 0xconhost.exe0
Chemin d’accès de l’application défaillante : conhost.exe1
Chemin d’accès du module défaillant: conhost.exe2
ID de rapport : conhost.exe3
 
Error: (05/11/2013 09:19:11 PM) (Source: Application Error) (User: )
Description: Nom de l’application défaillante LogonUI.exe, version : 6.1.7601.17514, horodatage : 0x4ce79f70
Nom du module défaillant : ntdll.dll, version : 6.1.7601.17725, horodatage : 0x4ec4aa8e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000009970a
ID du processus défaillant : 0x2490
Heure de début de l’application défaillante : 0xLogonUI.exe0
Chemin d’accès de l’application défaillante : LogonUI.exe1
Chemin d’accès du module défaillant: LogonUI.exe2
ID de rapport : LogonUI.exe3
 
Error: (05/11/2013 09:18:26 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 90080108
 
Error: (05/11/2013 06:34:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7035
 
Error: (05/11/2013 06:34:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7035
 
Error: (05/11/2013 06:34:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (05/11/2013 06:34:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6037
 
Error: (05/11/2013 06:34:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6037
 
Error: (05/11/2013 06:34:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
 
System errors:
=============
Error: (05/11/2013 10:19:21 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 
Error: (05/11/2013 03:01:57 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200d : Mise à jour pour Windows 7 pour ordinateurs à processeur x64 (KB982018).
 
Error: (05/10/2013 10:44:48 PM) (Source: DCOM) (User: )
Description: {4EB61BAC-A3B6-4760-9581-655041EF4D69}
 
Error: (05/10/2013 10:44:18 PM) (Source: Service Control Manager) (User: )
Description: Le service Service Google Update (gupdate) s’est terminé de façon inattendue pour la 1ème fois.
 
Error: (05/10/2013 03:02:44 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200d : Mise à jour pour Windows 7 pour ordinateurs à processeur x64 (KB982018).
 
Error: (05/10/2013 03:02:39 AM) (Source: Service Control Manager) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Programme d’installation pour les modules Windows, mais cette action a échoué en raison de l’erreur suivante : 
%%1056
 
Error: (05/10/2013 03:00:54 AM) (Source: DCOM) (User: )
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}
 
Error: (05/10/2013 03:00:39 AM) (Source: Service Control Manager) (User: )
Description: Le service Programme d’installation pour les modules Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.
 
Error: (05/09/2013 07:50:58 PM) (Source: Schannel) (User: AUTORITE NT)
Description: L’alerte fatale suivante a été générée : 40. L’état d’erreur interne est 107.
 
Error: (05/09/2013 07:50:58 PM) (Source: Schannel) (User: AUTORITE NT)
Description: Une demande de connexion SSL 3.0 a été reçue à partir d’une application cliente distante, mais aucune des suites de chiffrement prises en charge par l’application cliente n’est prise en charge par le serveur. La demande de connexion SSL a échoué.
 
 
Microsoft Office Sessions:
=========================
 
==================== Memory info =========================== 
 
Percentage of memory in use: 46%
Total physical RAM: 8174.52 MB
Available physical RAM: 4395.62 MB
Total Pagefile: 16347.22 MB
Available Pagefile: 11915.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:919.25 GB) (Free:466.47 GB) NTFS (Disk=0 Partition=2)
Drive d: (HP_RECOVERY) (Fixed) (Total:12.16 GB) (Free:1.49 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 8274EC65)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=919 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================


#4 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:09:23 PM

Posted 12 May 2013 - 06:57 AM

  1. Polease uninstall the following adware programs:

    Ask Toolbar
    Ask Toolbar Updater
    BittorrentBar_FR Toolbar
    My Scrap Nook Toolbar
    Wajam
    Search-Results Toolbar

     
  2. Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

    Run FRST/FRST64 and press the Fix button just once and wait.
    The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

Attached Files



#5 big13oss

big13oss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:23 PM

Posted 13 May 2013 - 09:22 PM

here is the log you requested:

 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-05-2013 01
Ran by Cecilia at 2013-05-13 22:22:02 Run:1
Running from C:\Users\Cecilia\Desktop
Boot Mode: Normal
==============================================
 
C:\Program Files (x86)\Ask.com\Updater\Updater.exe => No running process found
[5852] C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\datamngrUI.exe => Process closed successfully.
[15464] C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12brmon.exe => Process closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater => Value not found.
C:\Program Files (x86)\Ask.com\Updater\Updater.exe => File/Directory not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DATAMNGR => Value deleted successfully.
C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\DATAMN~1.EXE => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\My Scrap Nook Search Scope Monitor => Value not found.
C:\PROGRA~2\MYSCRA~2\bar\1.bin\12srchmn.exe => File/Directory not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\MyScrapNook_12 Browser Plugin Loader => Value not found.
C:\PROGRA~2\MYSCRA~2\bar\1.bin\12brmon.exe => Moved successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll => Moved successfully.
C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\\{00000000-6E41-4FD3-8538-502F5495E5FC} => Value not found.
HKCR\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\\{ef79f67a-6ad7-4715-a0f8-932fca442023} => Value deleted successfully.
HKCR\CLSID\{ef79f67a-6ad7-4715-a0f8-932fca442023} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{BE7A24F5-69CB-4708-B77B-B1EDA6043B95} => Key not found.
HKCR\CLSID\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0214754e-4e7d-4589-829d-e2523e6a3085} => Key not found.
HKCR\Wow6432Node\CLSID\{0214754e-4e7d-4589-829d-e2523e6a3085} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2713b394-286f-4d7c-89ea-4174eeab9f5a} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{2713b394-286f-4d7c-89ea-4174eeab9f5a} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{28387537-e3f9-4ed7-860c-11e69af4a8a0} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{65f159fb-5f5e-46f4-b45d-ccfa236d2073} => Key not found.
HKCR\Wow6432Node\CLSID\{65f159fb-5f5e-46f4-b45d-ccfa236d2073} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} => Key not found.
HKCR\Wow6432Node\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} => Key not found.
C:\Program Files (x86)\Wajam\IE\priam_bho.dll => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ef79f67a-6ad7-4715-a0f8-932fca442023} => Key not found.
HKCR\Wow6432Node\CLSID\{ef79f67a-6ad7-4715-a0f8-932fca442023} => Key not found.
C:\Program Files (x86)\BittorrentBar_FR\prxtbBit0.dll => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value not found.
HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{ef79f67a-6ad7-4715-a0f8-932fca442023} => Value not found.
HKCR\Wow6432Node\CLSID\{ef79f67a-6ad7-4715-a0f8-932fca442023} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{28387537-e3f9-4ed7-860c-11e69af4a8a0} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{28387537-e3f9-4ed7-860c-11e69af4a8a0} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{3bbd3c14-4c16-4989-8366-95bc9179779d} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{3bbd3c14-4c16-4989-8366-95bc9179779d} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{fe6f06fb-0fc0-4499-828f-ee48088f504f} => Value not found.
HKCR\Wow6432Node\CLSID\{fe6f06fb-0fc0-4499-828f-ee48088f504f} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{15a0413e-9f45-4d45-9a75-2c20b15b5b51} => Value not found.
HKCR\Wow6432Node\CLSID\{15a0413e-9f45-4d45-9a75-2c20b15b5b51} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2713b394-286f-4d7c-89ea-4174eeab9f5a} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{2713b394-286f-4d7c-89ea-4174eeab9f5a} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Value deleted successfully.
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EF79F67A-6AD7-4715-A0F8-932FCA442023} => Value deleted successfully.
HKCR\CLSID\{EF79F67A-6AD7-4715-A0F8-932FCA442023} => Key not found.
C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\{15a0413e-9f45-4d45-9a75-2c20b15b5b51} not found.
C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\12ffxtbr@MyScrapNook_12.com not found.
C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\toolbar@ask.com not found.
C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\Extensions\{ef79f67a-6ad7-4715-a0f8-932fca442023} => Moved successfully.
C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\NP12Stub.dll not found.
C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp => Moved successfully.
MyScrapNook_12Service => Service not found.
WajamUpdater => Service not found.
C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe => File/Directory not found.
C:\PROGRA~2\MYSCRA~2\bar\1.bin\12barsvc.exe => File/Directory not found.
C:\Windows\Installer\{3265e3f5-ec3d-5857-89a9-18deb64e1d93} => Moved successfully.
C:\Program Files (x86)\Ask.com => File/Directory not found.
C:\Program Files (x86)\iMesh Applications => Moved successfully.
C:\Program Files (x86)\MyScrapNook_12 => Moved successfully.
 
==== End of Fixlog ====


#6 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:09:23 PM

Posted 14 May 2013 - 06:45 AM

  1. Please download TDSSKiller.zip and and extract it.
    • Run TDSSKiller.exe.
    • Click Start scan.
    • When it is finished the utility outputs a list of detected objects with description.
      The utility automatically selects an action (Cure or Delete) for malicious objects.
      The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
    • Let reboot if needed and tell me if the tool needed a reboot.
    • Click on Report and post the contents of the text file that will open.

      Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.
  2. Please download AdwCleaner and save it to your desktop.
    • Close all open programs.
    • Double click on AdwCleaner.exe to run it.
    • Click on Delete and confirm the prompt.
    • After it is finished the computer will be restarted. A text file will open after the restart.
    • Please post the content of that log to your reply.
    • A copy of the log will be saved at C:\AdwCleaner[S1].txt.

     


#7 big13oss

big13oss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:23 PM

Posted 17 May 2013 - 09:44 PM

TDSS killer detected no objects, here's the report:

 

 

22:36:41.0622 5324  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:36:42.0841 5324  ============================================================
22:36:42.0842 5324  Current date / time: 2013/05/17 22:36:42.0841
22:36:42.0842 5324  SystemInfo:
22:36:42.0842 5324  
22:36:42.0842 5324  OS Version: 6.1.7601 ServicePack: 1.0
22:36:42.0842 5324  Product type: Workstation
22:36:42.0842 5324  ComputerName: UTILISATEUR-HP
22:36:42.0842 5324  UserName: Cecilia
22:36:42.0842 5324  Windows directory: C:\Windows
22:36:42.0842 5324  System windows directory: C:\Windows
22:36:42.0842 5324  Running under WOW64
22:36:42.0842 5324  Processor architecture: Intel x64
22:36:42.0842 5324  Number of processors: 8
22:36:42.0842 5324  Page size: 0x1000
22:36:42.0842 5324  Boot type: Normal boot
22:36:42.0842 5324  ============================================================
22:36:43.0742 5324  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:36:43.0760 5324  ============================================================
22:36:43.0760 5324  \Device\Harddisk0\DR0:
22:36:43.0760 5324  MBR partitions:
22:36:43.0760 5324  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:36:43.0760 5324  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x72E82800
22:36:43.0760 5324  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x72EB5000, BlocksNum 0x1851000
22:36:43.0760 5324  ============================================================
22:36:43.0778 5324  C: <-> \Device\Harddisk0\DR0\Partition2
22:36:43.0828 5324  D: <-> \Device\Harddisk0\DR0\Partition3
22:36:43.0828 5324  ============================================================
22:36:43.0828 5324  Initialize success
22:36:43.0828 5324  ============================================================
22:37:54.0638 4496  ============================================================
22:37:54.0638 4496  Scan started
22:37:54.0638 4496  Mode: Manual; 
22:37:54.0638 4496  ============================================================
22:37:58.0220 4496  ================ Scan system memory ========================
22:37:58.0220 4496  System memory - ok
22:37:58.0221 4496  ================ Scan services =============================
22:37:58.0805 4496  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:37:58.0814 4496  1394ohci - ok
22:37:58.0881 4496  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:37:58.0897 4496  ACPI - ok
22:37:58.0953 4496  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:37:58.0967 4496  AcpiPmi - ok
22:37:59.0362 4496  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:37:59.0365 4496  AdobeFlashPlayerUpdateSvc - ok
22:37:59.0419 4496  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:37:59.0426 4496  adp94xx - ok
22:37:59.0522 4496  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:37:59.0527 4496  adpahci - ok
22:37:59.0551 4496  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:37:59.0554 4496  adpu320 - ok
22:37:59.0596 4496  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:37:59.0598 4496  AeLookupSvc - ok
22:37:59.0705 4496  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
22:37:59.0713 4496  AFD - ok
22:37:59.0737 4496  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:37:59.0747 4496  agp440 - ok
22:37:59.0760 4496  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:37:59.0769 4496  ALG - ok
22:37:59.0787 4496  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:37:59.0801 4496  aliide - ok
22:37:59.0907 4496  [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:37:59.0911 4496  AMD External Events Utility - ok
22:37:59.0984 4496  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
22:37:59.0988 4496  amdide - ok
22:38:00.0040 4496  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:38:00.0047 4496  AmdK8 - ok
22:38:00.0493 4496  [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
22:38:00.0700 4496  amdkmdag - ok
22:38:00.0780 4496  [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
22:38:00.0786 4496  amdkmdap - ok
22:38:00.0812 4496  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:38:00.0813 4496  AmdPPM - ok
22:38:00.0833 4496  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:38:00.0834 4496  amdsata - ok
22:38:00.0873 4496  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:38:00.0888 4496  amdsbs - ok
22:38:00.0903 4496  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:38:00.0904 4496  amdxata - ok
22:38:00.0936 4496  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
22:38:00.0937 4496  AppID - ok
22:38:00.0966 4496  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:38:00.0967 4496  AppIDSvc - ok
22:38:01.0008 4496  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
22:38:01.0010 4496  Appinfo - ok
22:38:01.0128 4496  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:38:01.0130 4496  Apple Mobile Device - ok
22:38:01.0155 4496  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
22:38:01.0157 4496  arc - ok
22:38:01.0196 4496  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:38:01.0197 4496  arcsas - ok
22:38:01.0259 4496  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:38:01.0272 4496  aspnet_state - ok
22:38:01.0300 4496  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:38:01.0301 4496  AsyncMac - ok
22:38:01.0318 4496  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
22:38:01.0319 4496  atapi - ok
22:38:01.0358 4496  [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:38:01.0360 4496  AtiHDAudioService - ok
22:38:01.0386 4496  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:38:01.0395 4496  AudioEndpointBuilder - ok
22:38:01.0405 4496  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:38:01.0409 4496  AudioSrv - ok
22:38:01.0436 4496  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:38:01.0438 4496  AxInstSV - ok
22:38:01.0470 4496  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:38:01.0476 4496  b06bdrv - ok
22:38:01.0490 4496  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:38:01.0494 4496  b57nd60a - ok
22:38:01.0510 4496  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:38:01.0512 4496  BDESVC - ok
22:38:01.0519 4496  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:38:01.0520 4496  Beep - ok
22:38:01.0548 4496  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
22:38:01.0554 4496  BFE - ok
22:38:01.0736 4496  [ 7B56A40EAAACF1867FF178501D3EA185 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20130502.001\BHDrvx64.sys
22:38:01.0753 4496  BHDrvx64 - ok
22:38:01.0778 4496  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
22:38:01.0794 4496  BITS - ok
22:38:01.0815 4496  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
22:38:01.0817 4496  blbdrive - ok
22:38:01.0891 4496  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:38:01.0898 4496  Bonjour Service - ok
22:38:01.0939 4496  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:38:01.0940 4496  bowser - ok
22:38:01.0958 4496  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:38:01.0959 4496  BrFiltLo - ok
22:38:01.0968 4496  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:38:01.0969 4496  BrFiltUp - ok
22:38:02.0013 4496  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
22:38:02.0015 4496  Browser - ok
22:38:02.0029 4496  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:38:02.0033 4496  Brserid - ok
22:38:02.0053 4496  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:38:02.0054 4496  BrSerWdm - ok
22:38:02.0068 4496  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:38:02.0068 4496  BrUsbMdm - ok
22:38:02.0079 4496  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:38:02.0079 4496  BrUsbSer - ok
22:38:02.0087 4496  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:38:02.0089 4496  BTHMODEM - ok
22:38:02.0122 4496  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:38:02.0123 4496  bthserv - ok
22:38:02.0149 4496  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:38:02.0155 4496  cdfs - ok
22:38:02.0177 4496  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:38:02.0181 4496  cdrom - ok
22:38:02.0227 4496  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:38:02.0228 4496  CertPropSvc - ok
22:38:02.0243 4496  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
22:38:02.0245 4496  circlass - ok
22:38:02.0265 4496  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:38:02.0269 4496  CLFS - ok
22:38:02.0331 4496  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:38:02.0333 4496  clr_optimization_v2.0.50727_32 - ok
22:38:02.0361 4496  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:38:02.0363 4496  clr_optimization_v2.0.50727_64 - ok
22:38:02.0430 4496  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:38:02.0473 4496  clr_optimization_v4.0.30319_32 - ok
22:38:02.0503 4496  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:38:02.0505 4496  clr_optimization_v4.0.30319_64 - ok
22:38:02.0528 4496  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:38:02.0529 4496  CmBatt - ok
22:38:02.0554 4496  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:38:02.0555 4496  cmdide - ok
22:38:02.0611 4496  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
22:38:02.0617 4496  CNG - ok
22:38:02.0644 4496  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:38:02.0645 4496  Compbatt - ok
22:38:02.0663 4496  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
22:38:02.0664 4496  CompositeBus - ok
22:38:02.0668 4496  COMSysApp - ok
22:38:02.0677 4496  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:38:02.0678 4496  crcdisk - ok
22:38:02.0720 4496  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:38:02.0723 4496  CryptSvc - ok
22:38:02.0813 4496  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:38:02.0820 4496  cvhsvc - ok
22:38:03.0052 4496  [ 914A7156B0C0F10BE645A02E13F576B2 ] DAUpdaterSvc    C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
22:38:03.0053 4496  DAUpdaterSvc - ok
22:38:03.0088 4496  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:38:03.0096 4496  DcomLaunch - ok
22:38:03.0124 4496  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:38:03.0128 4496  defragsvc - ok
22:38:03.0145 4496  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:38:03.0147 4496  DfsC - ok
22:38:03.0177 4496  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:38:03.0181 4496  Dhcp - ok
22:38:03.0186 4496  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:38:03.0187 4496  discache - ok
22:38:03.0219 4496  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
22:38:03.0221 4496  Disk - ok
22:38:03.0242 4496  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:38:03.0245 4496  Dnscache - ok
22:38:03.0259 4496  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:38:03.0263 4496  dot3svc - ok
22:38:03.0276 4496  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
22:38:03.0279 4496  DPS - ok
22:38:03.0296 4496  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:38:03.0297 4496  drmkaud - ok
22:38:03.0317 4496  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:38:03.0320 4496  dtsoftbus01 - ok
22:38:03.0372 4496  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:38:03.0380 4496  DXGKrnl - ok
22:38:03.0433 4496  EagleX64 - ok
22:38:03.0450 4496  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:38:03.0452 4496  EapHost - ok
22:38:03.0563 4496  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:38:03.0605 4496  ebdrv - ok
22:38:03.0653 4496  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
22:38:03.0659 4496  eeCtrl - ok
22:38:03.0708 4496  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
22:38:03.0709 4496  EFS - ok
22:38:03.0755 4496  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:38:03.0764 4496  ehRecvr - ok
22:38:03.0773 4496  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:38:03.0775 4496  ehSched - ok
22:38:03.0803 4496  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:38:03.0810 4496  elxstor - ok
22:38:03.0873 4496  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:38:03.0875 4496  EraserUtilRebootDrv - ok
22:38:03.0896 4496  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:38:03.0898 4496  ErrDev - ok
22:38:03.0929 4496  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:38:03.0934 4496  EventSystem - ok
22:38:03.0957 4496  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:38:03.0959 4496  exfat - ok
22:38:03.0976 4496  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:38:03.0978 4496  fastfat - ok
22:38:04.0007 4496  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
22:38:04.0017 4496  Fax - ok
22:38:04.0045 4496  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
22:38:04.0046 4496  fdc - ok
22:38:04.0071 4496  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:38:04.0072 4496  fdPHost - ok
22:38:04.0083 4496  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:38:04.0084 4496  FDResPub - ok
22:38:04.0093 4496  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:38:04.0095 4496  FileInfo - ok
22:38:04.0099 4496  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:38:04.0100 4496  Filetrace - ok
22:38:04.0111 4496  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:38:04.0112 4496  flpydisk - ok
22:38:04.0128 4496  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:38:04.0132 4496  FltMgr - ok
22:38:04.0305 4496  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
22:38:04.0321 4496  FontCache - ok
22:38:04.0619 4496  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:38:04.0626 4496  FontCache3.0.0.0 - ok
22:38:04.0670 4496  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:38:04.0674 4496  FsDepends - ok
22:38:04.0747 4496  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:38:04.0748 4496  Fs_Rec - ok
22:38:04.0919 4496  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:38:04.0925 4496  fvevol - ok
22:38:04.0994 4496  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:38:04.0997 4496  gagp30kx - ok
22:38:05.0202 4496  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:38:05.0206 4496  GamesAppService - ok
22:38:05.0299 4496  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:38:05.0299 4496  GEARAspiWDM - ok
22:38:05.0425 4496  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
22:38:05.0436 4496  gpsvc - ok
22:38:05.0635 4496  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:38:05.0637 4496  gupdate - ok
22:38:05.0682 4496  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:38:05.0683 4496  gupdatem - ok
22:38:05.0773 4496  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:38:05.0778 4496  gusvc - ok
22:38:05.0838 4496  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:38:05.0842 4496  hcw85cir - ok
22:38:05.0935 4496  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:38:05.0940 4496  HdAudAddService - ok
22:38:05.0987 4496  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
22:38:05.0991 4496  HDAudBus - ok
22:38:06.0014 4496  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:38:06.0015 4496  HidBatt - ok
22:38:06.0032 4496  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:38:06.0034 4496  HidBth - ok
22:38:06.0063 4496  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:38:06.0064 4496  HidIr - ok
22:38:06.0088 4496  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
22:38:06.0090 4496  hidserv - ok
22:38:06.0097 4496  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:38:06.0099 4496  HidUsb - ok
22:38:06.0119 4496  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:38:06.0122 4496  hkmsvc - ok
22:38:06.0133 4496  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:38:06.0136 4496  HomeGroupListener - ok
22:38:06.0156 4496  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:38:06.0159 4496  HomeGroupProvider - ok
22:38:06.0269 4496  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:38:06.0271 4496  HP Support Assistant Service - ok
22:38:06.0334 4496  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
22:38:06.0340 4496  HPClientSvc - ok
22:38:06.0471 4496  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:38:06.0481 4496  hpqwmiex - ok
22:38:06.0553 4496  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:38:06.0560 4496  HpSAMD - ok
22:38:06.0595 4496  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:38:06.0602 4496  HTTP - ok
22:38:06.0634 4496  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:38:06.0634 4496  hwpolicy - ok
22:38:06.0674 4496  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
22:38:06.0676 4496  i8042prt - ok
22:38:06.0697 4496  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\Windows\system32\drivers\iaStor.sys
22:38:06.0699 4496  iaStor - ok
22:38:06.0717 4496  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:38:06.0722 4496  iaStorV - ok
22:38:06.0787 4496  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:38:06.0795 4496  idsvc - ok
22:38:06.0908 4496  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20130517.001\IDSvia64.sys
22:38:06.0911 4496  IDSVia64 - ok
22:38:07.0012 4496  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:38:07.0077 4496  igfx - ok
22:38:07.0100 4496  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:38:07.0101 4496  iirsp - ok
22:38:07.0129 4496  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
22:38:07.0138 4496  IKEEXT - ok
22:38:07.0206 4496  [ 392D5C87F282E8E36DF5154418A7BB20 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:38:07.0231 4496  IntcAzAudAddService - ok
22:38:07.0245 4496  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
22:38:07.0245 4496  intelide - ok
22:38:07.0274 4496  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
22:38:07.0275 4496  intelppm - ok
22:38:07.0289 4496  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:38:07.0291 4496  IPBusEnum - ok
22:38:07.0313 4496  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:38:07.0314 4496  IpFilterDriver - ok
22:38:07.0365 4496  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:38:07.0370 4496  iphlpsvc - ok
22:38:07.0380 4496  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:38:07.0381 4496  IPMIDRV - ok
22:38:07.0388 4496  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:38:07.0389 4496  IPNAT - ok
22:38:07.0467 4496  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
22:38:07.0474 4496  iPod Service - ok
22:38:07.0484 4496  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:38:07.0485 4496  IRENUM - ok
22:38:07.0496 4496  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:38:07.0498 4496  isapnp - ok
22:38:07.0521 4496  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:38:07.0524 4496  iScsiPrt - ok
22:38:07.0546 4496  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:38:07.0546 4496  kbdclass - ok
22:38:07.0567 4496  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:38:07.0568 4496  kbdhid - ok
22:38:07.0591 4496  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
22:38:07.0592 4496  KeyIso - ok
22:38:07.0636 4496  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:38:07.0638 4496  KSecDD - ok
22:38:07.0674 4496  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:38:07.0676 4496  KSecPkg - ok
22:38:07.0700 4496  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:38:07.0701 4496  ksthunk - ok
22:38:07.0729 4496  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:38:07.0734 4496  KtmRm - ok
22:38:07.0756 4496  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:38:07.0761 4496  LanmanServer - ok
22:38:07.0787 4496  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:38:07.0791 4496  LanmanWorkstation - ok
22:38:07.0831 4496  [ FA4A45C179AB0E0F1A31B9751D4B18D7 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
22:38:07.0832 4496  LightScribeService - ok
22:38:07.0856 4496  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:38:07.0858 4496  lltdio - ok
22:38:07.0889 4496  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:38:07.0892 4496  lltdsvc - ok
22:38:07.0911 4496  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:38:07.0912 4496  lmhosts - ok
22:38:07.0945 4496  [ D75C4B4A8FE6D7FD74A7EECDBAEC729F ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:38:07.0950 4496  LMS - ok
22:38:07.0982 4496  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:38:07.0984 4496  LSI_FC - ok
22:38:08.0000 4496  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:38:08.0002 4496  LSI_SAS - ok
22:38:08.0010 4496  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:38:08.0012 4496  LSI_SAS2 - ok
22:38:08.0025 4496  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:38:08.0026 4496  LSI_SCSI - ok
22:38:08.0051 4496  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:38:08.0052 4496  luafv - ok
22:38:08.0105 4496  [ B2085E335F2B57077B0CBADB6F1245CD ] lvpopf64        C:\Windows\system32\DRIVERS\lvpopf64.sys
22:38:08.0109 4496  lvpopf64 - ok
22:38:08.0157 4496  [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
22:38:08.0158 4496  LVPr2M64 - ok
22:38:08.0213 4496  [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
22:38:08.0213 4496  LVPr2Mon - ok
22:38:08.0295 4496  [ A35679E56E78091E1042A2D7ADBF2958 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
22:38:08.0298 4496  LVPrcS64 - ok
22:38:08.0360 4496  [ 986C1CB787A007BAA5F74E7D316D7246 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
22:38:08.0365 4496  LVRS64 - ok
22:38:08.0482 4496  [ 5747BC465ABEA2858C5D037252AED84E ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
22:38:08.0571 4496  LVUVC64 - ok
22:38:08.0660 4496  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
22:38:08.0662 4496  McComponentHostService - ok
22:38:08.0687 4496  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:38:08.0690 4496  Mcx2Svc - ok
22:38:08.0710 4496  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:38:08.0711 4496  megasas - ok
22:38:08.0722 4496  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:38:08.0726 4496  MegaSR - ok
22:38:08.0755 4496  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\drivers\HECIx64.sys
22:38:08.0756 4496  MEIx64 - ok
22:38:08.0773 4496  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:38:08.0775 4496  MMCSS - ok
22:38:08.0799 4496  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:38:08.0800 4496  Modem - ok
22:38:08.0813 4496  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:38:08.0814 4496  monitor - ok
22:38:08.0883 4496  [ 5FEC1FF5BB9A1FA5C9CF4544D19D6D5D ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
22:38:08.0884 4496  MotioninJoyXFilter - ok
22:38:08.0906 4496  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:38:08.0906 4496  mouclass - ok
22:38:08.0910 4496  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:38:08.0911 4496  mouhid - ok
22:38:08.0931 4496  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:38:08.0932 4496  mountmgr - ok
22:38:09.0004 4496  [ 1C9B83F6A2D1F414F0ACD28D75605607 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:38:09.0005 4496  MozillaMaintenance - ok
22:38:09.0019 4496  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:38:09.0021 4496  mpio - ok
22:38:09.0030 4496  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:38:09.0032 4496  mpsdrv - ok
22:38:09.0050 4496  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:38:09.0059 4496  MpsSvc - ok
22:38:09.0076 4496  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:38:09.0078 4496  MRxDAV - ok
22:38:09.0094 4496  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:38:09.0097 4496  mrxsmb - ok
22:38:09.0113 4496  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:38:09.0116 4496  mrxsmb10 - ok
22:38:09.0138 4496  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:38:09.0140 4496  mrxsmb20 - ok
22:38:09.0153 4496  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:38:09.0154 4496  msahci - ok
22:38:09.0162 4496  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:38:09.0164 4496  msdsm - ok
22:38:09.0182 4496  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:38:09.0184 4496  MSDTC - ok
22:38:09.0202 4496  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:38:09.0203 4496  Msfs - ok
22:38:09.0213 4496  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:38:09.0214 4496  mshidkmdf - ok
22:38:09.0225 4496  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:38:09.0226 4496  msisadrv - ok
22:38:09.0248 4496  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:38:09.0250 4496  MSiSCSI - ok
22:38:09.0253 4496  msiserver - ok
22:38:09.0272 4496  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:38:09.0273 4496  MSKSSRV - ok
22:38:09.0285 4496  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:38:09.0286 4496  MSPCLOCK - ok
22:38:09.0296 4496  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:38:09.0297 4496  MSPQM - ok
22:38:09.0316 4496  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:38:09.0321 4496  MsRPC - ok
22:38:09.0353 4496  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
22:38:09.0353 4496  mssmbios - ok
22:38:09.0367 4496  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:38:09.0371 4496  MSTEE - ok
22:38:09.0387 4496  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:38:09.0390 4496  MTConfig - ok
22:38:09.0407 4496  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:38:09.0408 4496  Mup - ok
22:38:09.0455 4496  [ E78A365CC3E0FBFC018A33DCE01909F8 ] N360            C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
22:38:09.0456 4496  N360 - ok
22:38:09.0495 4496  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
22:38:09.0502 4496  napagent - ok
22:38:09.0524 4496  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:38:09.0528 4496  NativeWifiP - ok
22:38:09.0614 4496  [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20130517.008\ENG64.SYS
22:38:09.0616 4496  NAVENG - ok
22:38:09.0661 4496  [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20130517.008\EX64.SYS
22:38:09.0674 4496  NAVEX15 - ok
22:38:09.0742 4496  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:38:09.0753 4496  NDIS - ok
22:38:09.0772 4496  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:38:09.0773 4496  NdisCap - ok
22:38:09.0794 4496  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:38:09.0795 4496  NdisTapi - ok
22:38:09.0801 4496  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:38:09.0802 4496  Ndisuio - ok
22:38:09.0813 4496  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:38:09.0816 4496  NdisWan - ok
22:38:09.0823 4496  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:38:09.0824 4496  NDProxy - ok
22:38:09.0848 4496  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:38:09.0849 4496  NetBIOS - ok
22:38:09.0864 4496  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:38:09.0867 4496  NetBT - ok
22:38:09.0874 4496  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
22:38:09.0875 4496  Netlogon - ok
22:38:09.0899 4496  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:38:09.0904 4496  Netman - ok
22:38:09.0927 4496  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:38:09.0929 4496  NetMsmqActivator - ok
22:38:09.0933 4496  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:38:09.0934 4496  NetPipeActivator - ok
22:38:09.0955 4496  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:38:09.0960 4496  netprofm - ok
22:38:09.0995 4496  [ 24CF1304D899124336F67F88F3C15E21 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
22:38:10.0006 4496  netr28x - ok
22:38:10.0010 4496  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:38:10.0011 4496  NetTcpActivator - ok
22:38:10.0015 4496  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:38:10.0016 4496  NetTcpPortSharing - ok
22:38:10.0032 4496  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:38:10.0033 4496  nfrd960 - ok
22:38:10.0077 4496  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:38:10.0081 4496  NlaSvc - ok
22:38:10.0150 4496  [ 5839A8027D6D324A7CD494051A96628C ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:38:10.0203 4496  NOBU - ok
22:38:10.0247 4496  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:38:10.0268 4496  Npfs - ok
22:38:10.0319 4496  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:38:10.0320 4496  nsi - ok
22:38:10.0353 4496  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:38:10.0354 4496  nsiproxy - ok
22:38:10.0438 4496  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:38:10.0458 4496  Ntfs - ok
22:38:10.0491 4496  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:38:10.0491 4496  Null - ok
22:38:10.0620 4496  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:38:10.0623 4496  nvraid - ok
22:38:10.0636 4496  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:38:10.0638 4496  nvstor - ok
22:38:10.0662 4496  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:38:10.0664 4496  nv_agp - ok
22:38:10.0743 4496  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:38:10.0748 4496  odserv - ok
22:38:10.0762 4496  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:38:10.0764 4496  ohci1394 - ok
22:38:10.0788 4496  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:38:10.0790 4496  ose - ok
22:38:10.0897 4496  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:38:10.0943 4496  osppsvc - ok
22:38:10.0973 4496  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:38:10.0977 4496  p2pimsvc - ok
22:38:10.0988 4496  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:38:10.0994 4496  p2psvc - ok
22:38:11.0012 4496  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
22:38:11.0013 4496  Parport - ok
22:38:11.0049 4496  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:38:11.0050 4496  partmgr - ok
22:38:11.0060 4496  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:38:11.0063 4496  PcaSvc - ok
22:38:11.0080 4496  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
22:38:11.0083 4496  pci - ok
22:38:11.0104 4496  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
22:38:11.0105 4496  pciide - ok
22:38:11.0121 4496  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:38:11.0124 4496  pcmcia - ok
22:38:11.0148 4496  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:38:11.0151 4496  pcw - ok
22:38:11.0186 4496  pdfcDispatcher - ok
22:38:11.0260 4496  [ C1C3BAF078BE5A14384A4BA2D730817D ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
22:38:11.0262 4496  PDFProFiltSrvPP - ok
22:38:11.0277 4496  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:38:11.0285 4496  PEAUTH - ok
22:38:11.0344 4496  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:38:11.0345 4496  PerfHost - ok
22:38:11.0379 4496  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
22:38:11.0392 4496  pla - ok
22:38:11.0416 4496  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:38:11.0421 4496  PlugPlay - ok
22:38:11.0456 4496  PnkBstrA - ok
22:38:11.0467 4496  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:38:11.0469 4496  PNRPAutoReg - ok
22:38:11.0481 4496  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:38:11.0483 4496  PNRPsvc - ok
22:38:11.0512 4496  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:38:11.0517 4496  PolicyAgent - ok
22:38:11.0539 4496  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:38:11.0542 4496  Power - ok
22:38:11.0566 4496  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:38:11.0567 4496  PptpMiniport - ok
22:38:11.0579 4496  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
22:38:11.0580 4496  Processor - ok
22:38:11.0624 4496  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:38:11.0627 4496  ProfSvc - ok
22:38:11.0632 4496  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:38:11.0633 4496  ProtectedStorage - ok
22:38:11.0645 4496  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:38:11.0646 4496  Psched - ok
22:38:11.0693 4496  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:38:11.0706 4496  ql2300 - ok
22:38:11.0721 4496  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:38:11.0722 4496  ql40xx - ok
22:38:11.0739 4496  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:38:11.0742 4496  QWAVE - ok
22:38:11.0748 4496  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:38:11.0749 4496  QWAVEdrv - ok
22:38:11.0758 4496  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:38:11.0759 4496  RasAcd - ok
22:38:11.0781 4496  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:38:11.0782 4496  RasAgileVpn - ok
22:38:11.0803 4496  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:38:11.0805 4496  RasAuto - ok
22:38:11.0818 4496  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:38:11.0820 4496  Rasl2tp - ok
22:38:11.0835 4496  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
22:38:11.0839 4496  RasMan - ok
22:38:11.0850 4496  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:38:11.0851 4496  RasPppoe - ok
22:38:11.0860 4496  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:38:11.0861 4496  RasSstp - ok
22:38:11.0871 4496  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:38:11.0874 4496  rdbss - ok
22:38:11.0884 4496  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:38:11.0884 4496  rdpbus - ok
22:38:11.0899 4496  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:38:11.0899 4496  RDPCDD - ok
22:38:11.0908 4496  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:38:11.0909 4496  RDPENCDD - ok
22:38:11.0917 4496  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:38:11.0917 4496  RDPREFMP - ok
22:38:11.0961 4496  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:38:11.0963 4496  RDPWD - ok
22:38:11.0977 4496  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:38:11.0979 4496  rdyboost - ok
22:38:11.0994 4496  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:38:11.0996 4496  RemoteAccess - ok
22:38:12.0016 4496  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:38:12.0019 4496  RemoteRegistry - ok
22:38:12.0026 4496  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:38:12.0028 4496  RpcEptMapper - ok
22:38:12.0047 4496  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:38:12.0048 4496  RpcLocator - ok
22:38:12.0061 4496  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
22:38:12.0065 4496  RpcSs - ok
22:38:12.0085 4496  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:38:12.0086 4496  rspndr - ok
22:38:12.0116 4496  [ AFC12DFA4C7B089673AD67402CA19EDB ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:38:12.0120 4496  RTL8167 - ok
22:38:12.0132 4496  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
22:38:12.0133 4496  SamSs - ok
22:38:12.0181 4496  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:38:12.0182 4496  sbp2port - ok
22:38:12.0196 4496  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:38:12.0199 4496  SCardSvr - ok
22:38:12.0210 4496  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:38:12.0211 4496  scfilter - ok
22:38:12.0240 4496  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
22:38:12.0251 4496  Schedule - ok
22:38:12.0268 4496  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:38:12.0268 4496  SCPolicySvc - ok
22:38:12.0280 4496  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:38:12.0282 4496  SDRSVC - ok
22:38:12.0303 4496  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:38:12.0304 4496  secdrv - ok
22:38:12.0312 4496  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
22:38:12.0314 4496  seclogon - ok
22:38:12.0331 4496  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
22:38:12.0332 4496  SENS - ok
22:38:12.0339 4496  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:38:12.0341 4496  SensrSvc - ok
22:38:12.0369 4496  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:38:12.0370 4496  Serenum - ok
22:38:12.0387 4496  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
22:38:12.0388 4496  Serial - ok
22:38:12.0414 4496  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:38:12.0415 4496  sermouse - ok
22:38:12.0434 4496  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:38:12.0436 4496  SessionEnv - ok
22:38:12.0447 4496  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:38:12.0449 4496  sffdisk - ok
22:38:12.0458 4496  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:38:12.0459 4496  sffp_mmc - ok
22:38:12.0468 4496  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:38:12.0468 4496  sffp_sd - ok
22:38:12.0479 4496  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:38:12.0480 4496  sfloppy - ok
22:38:12.0533 4496  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
22:38:12.0543 4496  Sftfs - ok
22:38:12.0601 4496  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:38:12.0606 4496  sftlist - ok
22:38:12.0622 4496  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
22:38:12.0625 4496  Sftplay - ok
22:38:12.0636 4496  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
22:38:12.0636 4496  Sftredir - ok
22:38:12.0649 4496  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
22:38:12.0649 4496  Sftvol - ok
22:38:12.0661 4496  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:38:12.0664 4496  sftvsa - ok
22:38:12.0695 4496  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:38:12.0699 4496  SharedAccess - ok
22:38:12.0722 4496  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:38:12.0727 4496  ShellHWDetection - ok
22:38:12.0745 4496  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:38:12.0746 4496  SiSRaid2 - ok
22:38:12.0772 4496  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:38:12.0773 4496  SiSRaid4 - ok
22:38:12.0892 4496  [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:38:12.0923 4496  Skype C2C Service - ok
22:38:12.0953 4496  [ C44DA62FBCAE62803EA95600FC263065 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:38:12.0955 4496  SkypeUpdate - ok
22:38:12.0977 4496  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:38:12.0979 4496  Smb - ok
22:38:13.0014 4496  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:38:13.0015 4496  SNMPTRAP - ok
22:38:13.0027 4496  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:38:13.0027 4496  spldr - ok
22:38:13.0076 4496  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
22:38:13.0083 4496  Spooler - ok
22:38:13.0139 4496  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
22:38:13.0171 4496  sppsvc - ok
22:38:13.0181 4496  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:38:13.0182 4496  sppuinotify - ok
22:38:13.0230 4496  [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP           C:\Windows\System32\Drivers\N360x64\0502020.003\SRTSP64.SYS
22:38:13.0236 4496  SRTSP - ok
22:38:13.0248 4496  [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX          C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS
22:38:13.0248 4496  SRTSPX - ok
22:38:13.0273 4496  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:38:13.0278 4496  srv - ok
22:38:13.0288 4496  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:38:13.0292 4496  srv2 - ok
22:38:13.0299 4496  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:38:13.0301 4496  srvnet - ok
22:38:13.0323 4496  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:38:13.0326 4496  SSDPSRV - ok
22:38:13.0333 4496  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:38:13.0335 4496  SstpSvc - ok
22:38:13.0361 4496  Steam Client Service - ok
22:38:13.0387 4496  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:38:13.0387 4496  stexstor - ok
22:38:13.0409 4496  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
22:38:13.0416 4496  stisvc - ok
22:38:13.0438 4496  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
22:38:13.0439 4496  swenum - ok
22:38:13.0454 4496  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:38:13.0460 4496  swprv - ok
22:38:13.0488 4496  [ 6160145C7A87FC7672E8E3B886888176 ] SymDS           C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS
22:38:13.0493 4496  SymDS - ok
22:38:13.0517 4496  [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA          C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS
22:38:13.0525 4496  SymEFA - ok
22:38:13.0548 4496  [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
22:38:13.0550 4496  SymEvent - ok
22:38:13.0562 4496  [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON         C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS
22:38:13.0563 4496  SymIRON - ok
22:38:13.0584 4496  [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS         C:\Windows\System32\Drivers\N360x64\0502020.003\SYMNETS.SYS
22:38:13.0587 4496  SymNetS - ok
22:38:13.0625 4496  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
22:38:13.0640 4496  SysMain - ok
22:38:13.0651 4496  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:38:13.0653 4496  TabletInputService - ok
22:38:13.0664 4496  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:38:13.0668 4496  TapiSrv - ok
22:38:13.0674 4496  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:38:13.0676 4496  TBS - ok
22:38:13.0742 4496  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:38:13.0759 4496  Tcpip - ok
22:38:13.0785 4496  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:38:13.0794 4496  TCPIP6 - ok
22:38:13.0831 4496  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:38:13.0832 4496  tcpipreg - ok
22:38:13.0858 4496  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:38:13.0859 4496  TDPIPE - ok
22:38:13.0902 4496  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:38:13.0903 4496  TDTCP - ok
22:38:13.0922 4496  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:38:13.0924 4496  tdx - ok
22:38:13.0941 4496  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
22:38:13.0942 4496  TermDD - ok
22:38:13.0970 4496  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
22:38:13.0977 4496  TermService - ok
22:38:13.0983 4496  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:38:13.0984 4496  Themes - ok
22:38:14.0006 4496  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:38:14.0007 4496  THREADORDER - ok
22:38:14.0016 4496  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:38:14.0018 4496  TrkWks - ok
22:38:14.0051 4496  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:38:14.0053 4496  TrustedInstaller - ok
22:38:14.0063 4496  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:38:14.0064 4496  tssecsrv - ok
22:38:14.0085 4496  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:38:14.0086 4496  TsUsbFlt - ok
22:38:14.0100 4496  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:38:14.0101 4496  TsUsbGD - ok
22:38:14.0128 4496  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:38:14.0130 4496  tunnel - ok
22:38:14.0182 4496  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:38:14.0183 4496  uagp35 - ok
22:38:14.0195 4496  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:38:14.0199 4496  udfs - ok
22:38:14.0222 4496  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:38:14.0224 4496  UI0Detect - ok
22:38:14.0244 4496  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:38:14.0245 4496  uliagpkx - ok
22:38:14.0268 4496  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:38:14.0269 4496  umbus - ok
22:38:14.0285 4496  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:38:14.0286 4496  UmPass - ok
22:38:14.0338 4496  [ 927754ABF077AEB5504BE4E0F2C60C1B ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
22:38:14.0344 4496  UMVPFSrv - ok
22:38:14.0450 4496  [ 758C2CE427C343F780A205E28555C98D ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:38:14.0481 4496  UNS - ok
22:38:14.0504 4496  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:38:14.0510 4496  upnphost - ok
22:38:14.0546 4496  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
22:38:14.0548 4496  USBAAPL64 - ok
22:38:14.0566 4496  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:38:14.0568 4496  usbaudio - ok
22:38:14.0584 4496  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:38:14.0586 4496  usbccgp - ok
22:38:14.0604 4496  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:38:14.0605 4496  usbcir - ok
22:38:14.0619 4496  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:38:14.0620 4496  usbehci - ok
22:38:14.0633 4496  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:38:14.0638 4496  usbhub - ok
22:38:14.0654 4496  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:38:14.0655 4496  usbohci - ok
22:38:14.0675 4496  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:38:14.0676 4496  usbprint - ok
22:38:14.0711 4496  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:38:14.0712 4496  usbscan - ok
22:38:14.0728 4496  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:38:14.0729 4496  USBSTOR - ok
22:38:14.0738 4496  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:38:14.0739 4496  usbuhci - ok
22:38:14.0759 4496  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:38:14.0760 4496  UxSms - ok
22:38:14.0765 4496  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
22:38:14.0766 4496  VaultSvc - ok
22:38:14.0779 4496  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:38:14.0780 4496  vdrvroot - ok
22:38:14.0792 4496  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
22:38:14.0798 4496  vds - ok
22:38:14.0820 4496  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:38:14.0821 4496  vga - ok
22:38:14.0831 4496  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:38:14.0832 4496  VgaSave - ok
22:38:14.0847 4496  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:38:14.0849 4496  vhdmp - ok
22:38:14.0869 4496  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:38:14.0870 4496  viaide - ok
22:38:14.0882 4496  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:38:14.0883 4496  volmgr - ok
22:38:14.0900 4496  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:38:14.0903 4496  volmgrx - ok
22:38:14.0916 4496  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:38:14.0919 4496  volsnap - ok
22:38:14.0940 4496  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:38:14.0942 4496  vsmraid - ok
22:38:14.0978 4496  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
22:38:14.0994 4496  VSS - ok
22:38:14.0997 4496  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:38:14.0998 4496  vwifibus - ok
22:38:15.0015 4496  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:38:15.0016 4496  vwififlt - ok
22:38:15.0052 4496  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:38:15.0057 4496  W32Time - ok
22:38:15.0073 4496  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:38:15.0075 4496  WacomPen - ok
22:38:15.0110 4496  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:38:15.0112 4496  WANARP - ok
22:38:15.0114 4496  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:38:15.0115 4496  Wanarpv6 - ok
22:38:15.0153 4496  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:38:15.0164 4496  WatAdminSvc - ok
22:38:15.0191 4496  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
22:38:15.0206 4496  wbengine - ok
22:38:15.0218 4496  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:38:15.0221 4496  WbioSrvc - ok
22:38:15.0232 4496  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:38:15.0236 4496  wcncsvc - ok
22:38:15.0260 4496  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:38:15.0261 4496  WcsPlugInService - ok
22:38:15.0282 4496  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
22:38:15.0282 4496  Wd - ok
22:38:15.0337 4496  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:38:15.0344 4496  Wdf01000 - ok
22:38:15.0352 4496  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:38:15.0354 4496  WdiServiceHost - ok
22:38:15.0357 4496  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:38:15.0358 4496  WdiSystemHost - ok
22:38:15.0375 4496  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
22:38:15.0379 4496  WebClient - ok
22:38:15.0388 4496  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:38:15.0391 4496  Wecsvc - ok
22:38:15.0404 4496  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:38:15.0406 4496  wercplsupport - ok
22:38:15.0423 4496  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:38:15.0425 4496  WerSvc - ok
22:38:15.0444 4496  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:38:15.0444 4496  WfpLwf - ok
22:38:15.0456 4496  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:38:15.0457 4496  WIMMount - ok
22:38:15.0475 4496  WinDefend - ok
22:38:15.0487 4496  WinHttpAutoProxySvc - ok
22:38:15.0522 4496  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:38:15.0524 4496  Winmgmt - ok
22:38:15.0554 4496  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
22:38:15.0573 4496  WinRM - ok
22:38:15.0605 4496  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:38:15.0606 4496  WinUsb - ok
22:38:15.0631 4496  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:38:15.0640 4496  Wlansvc - ok
22:38:15.0703 4496  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:38:15.0704 4496  wlcrasvc - ok
22:38:15.0805 4496  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:38:15.0827 4496  wlidsvc - ok
22:38:15.0847 4496  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:38:15.0848 4496  WmiAcpi - ok
22:38:15.0872 4496  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:38:15.0874 4496  wmiApSrv - ok
22:38:15.0896 4496  WMPNetworkSvc - ok
22:38:15.0917 4496  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:38:15.0919 4496  WPCSvc - ok
22:38:15.0924 4496  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:38:15.0927 4496  WPDBusEnum - ok
22:38:15.0944 4496  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:38:15.0945 4496  ws2ifsl - ok
22:38:15.0953 4496  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
22:38:15.0955 4496  wscsvc - ok
22:38:15.0958 4496  WSearch - ok
22:38:16.0031 4496  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:38:16.0054 4496  wuauserv - ok
22:38:16.0091 4496  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:38:16.0092 4496  WudfPf - ok
22:38:16.0111 4496  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:38:16.0114 4496  WUDFRd - ok
22:38:16.0159 4496  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:38:16.0166 4496  wudfsvc - ok
22:38:16.0243 4496  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:38:16.0272 4496  WwanSvc - ok
22:38:16.0315 4496  [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
22:38:16.0316 4496  xusb21 - ok
22:38:16.0332 4496  ================ Scan global ===============================
22:38:16.0341 4496  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:38:16.0378 4496  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:38:16.0385 4496  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:38:16.0400 4496  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:38:16.0442 4496  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:38:16.0446 4496  [Global] - ok
22:38:16.0447 4496  ================ Scan MBR ==================================
22:38:16.0457 4496  [ 0C74571A0FA453AAE5932E52800057FF ] \Device\Harddisk0\DR0
22:38:16.0661 4496  \Device\Harddisk0\DR0 - ok
22:38:16.0661 4496  ================ Scan VBR ==================================
22:38:16.0663 4496  [ B5AA4E68C5035FE79D3912E99D4C014F ] \Device\Harddisk0\DR0\Partition1
22:38:16.0664 4496  \Device\Harddisk0\DR0\Partition1 - ok
22:38:16.0676 4496  [ 449E951B5AEAD9D09AC695B7A5AE3FE3 ] \Device\Harddisk0\DR0\Partition2
22:38:16.0677 4496  \Device\Harddisk0\DR0\Partition2 - ok
22:38:16.0707 4496  [ 40102DFFE2124E0B5F0B272FD2AD6486 ] \Device\Harddisk0\DR0\Partition3
22:38:16.0709 4496  \Device\Harddisk0\DR0\Partition3 - ok
22:38:16.0709 4496  ============================================================
22:38:16.0709 4496  Scan finished
22:38:16.0709 4496  ============================================================
22:38:16.0717 5080  Detected object count: 0
22:38:16.0717 5080  Actual detected object count: 0
22:41:07.0997 10172  ============================================================
22:41:07.0997 10172  Scan started
22:41:07.0997 10172  Mode: Manual; 
22:41:07.0997 10172  ============================================================
22:41:08.0454 10172  ================ Scan system memory ========================
22:41:08.0454 10172  System memory - ok
22:41:08.0455 10172  ================ Scan services =============================
22:41:08.0585 10172  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:41:08.0586 10172  1394ohci - ok
22:41:08.0607 10172  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:41:08.0609 10172  ACPI - ok
22:41:08.0633 10172  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:41:08.0634 10172  AcpiPmi - ok
22:41:08.0759 10172  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:41:08.0761 10172  AdobeFlashPlayerUpdateSvc - ok
22:41:08.0791 10172  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:41:08.0794 10172  adp94xx - ok
22:41:08.0824 10172  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:41:08.0827 10172  adpahci - ok
22:41:08.0842 10172  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:41:08.0843 10172  adpu320 - ok
22:41:08.0877 10172  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:41:08.0877 10172  AeLookupSvc - ok
22:41:08.0936 10172  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
22:41:08.0939 10172  AFD - ok
22:41:08.0959 10172  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:41:08.0960 10172  agp440 - ok
22:41:08.0974 10172  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:41:08.0975 10172  ALG - ok
22:41:08.0992 10172  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:41:08.0993 10172  aliide - ok
22:41:09.0053 10172  [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:41:09.0056 10172  AMD External Events Utility - ok
22:41:09.0105 10172  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
22:41:09.0105 10172  amdide - ok
22:41:09.0153 10172  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:41:09.0154 10172  AmdK8 - ok
22:41:09.0324 10172  [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
22:41:09.0367 10172  amdkmdag - ok
22:41:09.0399 10172  [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
22:41:09.0401 10172  amdkmdap - ok
22:41:09.0417 10172  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:41:09.0417 10172  AmdPPM - ok
22:41:09.0429 10172  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:41:09.0430 10172  amdsata - ok
22:41:09.0461 10172  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:41:09.0463 10172  amdsbs - ok
22:41:09.0483 10172  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:41:09.0484 10172  amdxata - ok
22:41:09.0498 10172  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
22:41:09.0499 10172  AppID - ok
22:41:09.0528 10172  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:41:09.0529 10172  AppIDSvc - ok
22:41:09.0579 10172  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
22:41:09.0580 10172  Appinfo - ok
22:41:09.0699 10172  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:41:09.0700 10172  Apple Mobile Device - ok
22:41:09.0726 10172  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
22:41:09.0727 10172  arc - ok
22:41:09.0742 10172  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:41:09.0743 10172  arcsas - ok
22:41:09.0813 10172  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:41:09.0814 10172  aspnet_state - ok
22:41:09.0837 10172  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:41:09.0838 10172  AsyncMac - ok
22:41:09.0847 10172  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
22:41:09.0848 10172  atapi - ok
22:41:09.0896 10172  [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:41:09.0898 10172  AtiHDAudioService - ok
22:41:09.0924 10172  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:41:09.0930 10172  AudioEndpointBuilder - ok
22:41:09.0941 10172  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:41:09.0947 10172  AudioSrv - ok
22:41:09.0957 10172  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:41:09.0959 10172  AxInstSV - ok
22:41:09.0983 10172  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:41:09.0985 10172  b06bdrv - ok
22:41:10.0002 10172  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:41:10.0004 10172  b57nd60a - ok
22:41:10.0023 10172  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:41:10.0023 10172  BDESVC - ok
22:41:10.0031 10172  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:41:10.0032 10172  Beep - ok
22:41:10.0052 10172  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
22:41:10.0056 10172  BFE - ok
22:41:10.0241 10172  [ 7B56A40EAAACF1867FF178501D3EA185 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20130502.001\BHDrvx64.sys
22:41:10.0250 10172  BHDrvx64 - ok
22:41:10.0282 10172  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
22:41:10.0290 10172  BITS - ok
22:41:10.0311 10172  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
22:41:10.0312 10172  blbdrive - ok
22:41:10.0362 10172  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:41:10.0365 10172  Bonjour Service - ok
22:41:10.0385 10172  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:41:10.0386 10172  bowser - ok
22:41:10.0396 10172  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:41:10.0396 10172  BrFiltLo - ok
22:41:10.0406 10172  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:41:10.0406 10172  BrFiltUp - ok
22:41:10.0451 10172  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
22:41:10.0452 10172  Browser - ok
22:41:10.0467 10172  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:41:10.0469 10172  Brserid - ok
22:41:10.0482 10172  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:41:10.0483 10172  BrSerWdm - ok
22:41:10.0497 10172  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:41:10.0497 10172  BrUsbMdm - ok
22:41:10.0508 10172  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:41:10.0508 10172  BrUsbSer - ok
22:41:10.0517 10172  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:41:10.0518 10172  BTHMODEM - ok
22:41:10.0543 10172  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:41:10.0544 10172  bthserv - ok
22:41:10.0570 10172  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:41:10.0571 10172  cdfs - ok
22:41:10.0581 10172  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:41:10.0582 10172  cdrom - ok
22:41:10.0589 10172  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:41:10.0590 10172  CertPropSvc - ok
22:41:10.0606 10172  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
22:41:10.0607 10172  circlass - ok
22:41:10.0627 10172  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:41:10.0628 10172  CLFS - ok
22:41:10.0685 10172  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:41:10.0686 10172  clr_optimization_v2.0.50727_32 - ok
22:41:10.0715 10172  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:41:10.0716 10172  clr_optimization_v2.0.50727_64 - ok
22:41:10.0759 10172  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:41:10.0760 10172  clr_optimization_v4.0.30319_32 - ok
22:41:10.0773 10172  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:41:10.0774 10172  clr_optimization_v4.0.30319_64 - ok
22:41:10.0790 10172  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:41:10.0791 10172  CmBatt - ok
22:41:10.0808 10172  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:41:10.0809 10172  cmdide - ok
22:41:10.0855 10172  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
22:41:10.0857 10172  CNG - ok
22:41:10.0881 10172  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:41:10.0882 10172  Compbatt - ok
22:41:10.0900 10172  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
22:41:10.0901 10172  CompositeBus - ok
22:41:10.0903 10172  COMSysApp - ok
22:41:10.0915 10172  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:41:10.0915 10172  crcdisk - ok
22:41:10.0958 10172  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:41:10.0959 10172  CryptSvc - ok
22:41:11.0049 10172  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:41:11.0053 10172  cvhsvc - ok
22:41:11.0239 10172  [ 914A7156B0C0F10BE645A02E13F576B2 ] DAUpdaterSvc    C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
22:41:11.0240 10172  DAUpdaterSvc - ok
22:41:11.0318 10172  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:41:11.0323 10172  DcomLaunch - ok
22:41:11.0369 10172  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:41:11.0372 10172  defragsvc - ok
22:41:11.0391 10172  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:41:11.0392 10172  DfsC - ok
22:41:11.0406 10172  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:41:11.0409 10172  Dhcp - ok
22:41:11.0413 10172  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:41:11.0413 10172  discache - ok
22:41:11.0432 10172  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
22:41:11.0433 10172  Disk - ok
22:41:11.0455 10172  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:41:11.0457 10172  Dnscache - ok
22:41:11.0479 10172  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:41:11.0482 10172  dot3svc - ok
22:41:11.0497 10172  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
22:41:11.0499 10172  DPS - ok
22:41:11.0509 10172  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:41:11.0510 10172  drmkaud - ok
22:41:11.0529 10172  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:41:11.0531 10172  dtsoftbus01 - ok
22:41:11.0584 10172  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:41:11.0590 10172  DXGKrnl - ok
22:41:11.0594 10172  EagleX64 - ok
22:41:11.0613 10172  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:41:11.0615 10172  EapHost - ok
22:41:11.0685 10172  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:41:11.0702 10172  ebdrv - ok
22:41:11.0739 10172  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
22:41:11.0741 10172  eeCtrl - ok
22:41:11.0787 10172  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
22:41:11.0788 10172  EFS - ok
22:41:11.0833 10172  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:41:11.0838 10172  ehRecvr - ok
22:41:11.0852 10172  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:41:11.0854 10172  ehSched - ok
22:41:11.0873 10172  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:41:11.0875 10172  elxstor - ok
22:41:11.0918 10172  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:41:11.0919 10172  EraserUtilRebootDrv - ok
22:41:11.0942 10172  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:41:11.0943 10172  ErrDev - ok
22:41:11.0966 10172  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:41:11.0969 10172  EventSystem - ok
22:41:11.0995 10172  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:41:11.0996 10172  exfat - ok
22:41:12.0013 10172  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:41:12.0015 10172  fastfat - ok
22:41:12.0035 10172  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
22:41:12.0039 10172  Fax - ok
22:41:12.0058 10172  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
22:41:12.0058 10172  fdc - ok
22:41:12.0067 10172  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:41:12.0067 10172  fdPHost - ok
22:41:12.0079 10172  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:41:12.0080 10172  FDResPub - ok
22:41:12.0089 10172  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:41:12.0090 10172  FileInfo - ok
22:41:12.0093 10172  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:41:12.0093 10172  Filetrace - ok
22:41:12.0107 10172  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:41:12.0107 10172  flpydisk - ok
22:41:12.0124 10172  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:41:12.0125 10172  FltMgr - ok
22:41:12.0190 10172  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
22:41:12.0197 10172  FontCache - ok
22:41:12.0233 10172  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:41:12.0234 10172  FontCache3.0.0.0 - ok
22:41:12.0250 10172  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:41:12.0251 10172  FsDepends - ok
22:41:12.0294 10172  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:41:12.0295 10172  Fs_Rec - ok
22:41:12.0363 10172  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:41:12.0365 10172  fvevol - ok
22:41:12.0374 10172  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:41:12.0375 10172  gagp30kx - ok
22:41:12.0431 10172  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:41:12.0432 10172  GamesAppService - ok
22:41:12.0479 10172  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:41:12.0480 10172  GEARAspiWDM - ok
22:41:12.0510 10172  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
22:41:12.0515 10172  gpsvc - ok
22:41:12.0573 10172  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:41:12.0574 10172  gupdate - ok
22:41:12.0578 10172  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:41:12.0579 10172  gupdatem - ok
22:41:12.0594 10172  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:41:12.0595 10172  gusvc - ok
22:41:12.0618 10172  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:41:12.0619 10172  hcw85cir - ok
22:41:12.0640 10172  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:41:12.0643 10172  HdAudAddService - ok
22:41:12.0668 10172  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
22:41:12.0669 10172  HDAudBus - ok
22:41:12.0686 10172  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:41:12.0687 10172  HidBatt - ok
22:41:12.0704 10172  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:41:12.0705 10172  HidBth - ok
22:41:12.0727 10172  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:41:12.0728 10172  HidIr - ok
22:41:12.0744 10172  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
22:41:12.0745 10172  hidserv - ok
22:41:12.0753 10172  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:41:12.0753 10172  HidUsb - ok
22:41:12.0766 10172  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:41:12.0768 10172  hkmsvc - ok
22:41:12.0789 10172  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:41:12.0791 10172  HomeGroupListener - ok
22:41:12.0812 10172  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:41:12.0814 10172  HomeGroupProvider - ok
22:41:12.0883 10172  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:41:12.0884 10172  HP Support Assistant Service - ok
22:41:12.0907 10172  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
22:41:12.0910 10172  HPClientSvc - ok
22:41:12.0979 10172  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:41:12.0985 10172  hpqwmiex - ok
22:41:13.0000 10172  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:41:13.0001 10172  HpSAMD - ok
22:41:13.0026 10172  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:41:13.0031 10172  HTTP - ok
22:41:13.0040 10172  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:41:13.0040 10172  hwpolicy - ok
22:41:13.0063 10172  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
22:41:13.0064 10172  i8042prt - ok
22:41:13.0085 10172  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\Windows\system32\drivers\iaStor.sys
22:41:13.0088 10172  iaStor - ok
22:41:13.0107 10172  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:41:13.0110 10172  iaStorV - ok
22:41:13.0152 10172  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:41:13.0158 10172  idsvc - ok
22:41:13.0273 10172  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20130517.001\IDSvia64.sys
22:41:13.0277 10172  IDSVia64 - ok
22:41:13.0383 10172  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:41:13.0412 10172  igfx - ok
22:41:13.0430 10172  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:41:13.0431 10172  iirsp - ok
22:41:13.0459 10172  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
22:41:13.0463 10172  IKEEXT - ok
22:41:13.0526 10172  [ 392D5C87F282E8E36DF5154418A7BB20 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:41:13.0545 10172  IntcAzAudAddService - ok
22:41:13.0558 10172  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
22:41:13.0559 10172  intelide - ok
22:41:13.0580 10172  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
22:41:13.0580 10172  intelppm - ok
22:41:13.0586 10172  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:41:13.0587 10172  IPBusEnum - ok
22:41:13.0602 10172  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:41:13.0603 10172  IpFilterDriver - ok
22:41:13.0655 10172  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:41:13.0660 10172  iphlpsvc - ok
22:41:13.0669 10172  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:41:13.0670 10172  IPMIDRV - ok
22:41:13.0677 10172  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:41:13.0678 10172  IPNAT - ok
22:41:13.0722 10172  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
22:41:13.0726 10172  iPod Service - ok
22:41:13.0740 10172  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:41:13.0740 10172  IRENUM - ok
22:41:13.0752 10172  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:41:13.0752 10172  isapnp - ok
22:41:13.0776 10172  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:41:13.0778 10172  iScsiPrt - ok
22:41:13.0793 10172  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:41:13.0793 10172  kbdclass - ok
22:41:13.0806 10172  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:41:13.0806 10172  kbdhid - ok
22:41:13.0813 10172  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
22:41:13.0814 10172  KeyIso - ok
22:41:13.0858 10172  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:41:13.0859 10172  KSecDD - ok
22:41:13.0896 10172  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:41:13.0897 10172  KSecPkg - ok
22:41:13.0922 10172  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:41:13.0923 10172  ksthunk - ok
22:41:13.0942 10172  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:41:13.0945 10172  KtmRm - ok
22:41:13.0970 10172  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:41:13.0972 10172  LanmanServer - ok
22:41:13.0992 10172  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:41:13.0995 10172  LanmanWorkstation - ok
22:41:14.0036 10172  [ FA4A45C179AB0E0F1A31B9751D4B18D7 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
22:41:14.0037 10172  LightScribeService - ok
22:41:14.0045 10172  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:41:14.0046 10172  lltdio - ok
22:41:14.0068 10172  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:41:14.0071 10172  lltdsvc - ok
22:41:14.0083 10172  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:41:14.0084 10172  lmhosts - ok
22:41:14.0109 10172  [ D75C4B4A8FE6D7FD74A7EECDBAEC729F ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:41:14.0111 10172  LMS - ok
22:41:14.0129 10172  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:41:14.0130 10172  LSI_FC - ok
22:41:14.0139 10172  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:41:14.0140 10172  LSI_SAS - ok
22:41:14.0158 10172  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:41:14.0158 10172  LSI_SAS2 - ok
22:41:14.0205 10172  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:41:14.0206 10172  LSI_SCSI - ok
22:41:14.0222 10172  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:41:14.0223 10172  luafv - ok
22:41:14.0252 10172  [ B2085E335F2B57077B0CBADB6F1245CD ] lvpopf64        C:\Windows\system32\DRIVERS\lvpopf64.sys
22:41:14.0254 10172  lvpopf64 - ok
22:41:14.0305 10172  [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
22:41:14.0305 10172  LVPr2M64 - ok
22:41:14.0308 10172  [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
22:41:14.0308 10172  LVPr2Mon - ok
22:41:14.0334 10172  [ A35679E56E78091E1042A2D7ADBF2958 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
22:41:14.0336 10172  LVPrcS64 - ok
22:41:14.0381 10172  [ 986C1CB787A007BAA5F74E7D316D7246 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
22:41:14.0383 10172  LVRS64 - ok
22:41:14.0481 10172  [ 5747BC465ABEA2858C5D037252AED84E ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
22:41:14.0508 10172  LVUVC64 - ok
22:41:14.0565 10172  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
22:41:14.0566 10172  McComponentHostService - ok
22:41:14.0584 10172  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:41:14.0585 10172  Mcx2Svc - ok
22:41:14.0599 10172  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:41:14.0599 10172  megasas - ok
22:41:14.0611 10172  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:41:14.0612 10172  MegaSR - ok
22:41:14.0636 10172  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\drivers\HECIx64.sys
22:41:14.0636 10172  MEIx64 - ok
22:41:14.0654 10172  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:41:14.0655 10172  MMCSS - ok
22:41:14.0679 10172  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:41:14.0680 10172  Modem - ok
22:41:14.0694 10172  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:41:14.0694 10172  monitor - ok
22:41:14.0730 10172  [ 5FEC1FF5BB9A1FA5C9CF4544D19D6D5D ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
22:41:14.0731 10172  MotioninJoyXFilter - ok
22:41:14.0744 10172  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:41:14.0745 10172  mouclass - ok
22:41:14.0748 10172  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:41:14.0749 10172  mouhid - ok
22:41:14.0761 10172  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:41:14.0762 10172  mountmgr - ok
22:41:14.0818 10172  [ 1C9B83F6A2D1F414F0ACD28D75605607 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:41:14.0819 10172  MozillaMaintenance - ok
22:41:14.0832 10172  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:41:14.0833 10172  mpio - ok
22:41:14.0844 10172  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:41:14.0845 10172  mpsdrv - ok
22:41:14.0863 10172  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:41:14.0868 10172  MpsSvc - ok
22:41:14.0882 10172  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:41:14.0883 10172  MRxDAV - ok
22:41:14.0900 10172  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:41:14.0901 10172  mrxsmb - ok
22:41:14.0910 10172  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:41:14.0911 10172  mrxsmb10 - ok
22:41:14.0927 10172  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:41:14.0928 10172  mrxsmb20 - ok
22:41:14.0941 10172  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:41:14.0942 10172  msahci - ok
22:41:14.0951 10172  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:41:14.0952 10172  msdsm - ok
22:41:14.0970 10172  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:41:14.0972 10172  MSDTC - ok
22:41:14.0991 10172  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:41:14.0991 10172  Msfs - ok
22:41:15.0002 10172  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:41:15.0002 10172  mshidkmdf - ok
22:41:15.0014 10172  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:41:15.0014 10172  msisadrv - ok
22:41:15.0037 10172  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:41:15.0038 10172  MSiSCSI - ok
22:41:15.0041 10172  msiserver - ok
22:41:15.0053 10172  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:41:15.0053 10172  MSKSSRV - ok
22:41:15.0065 10172  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:41:15.0066 10172  MSPCLOCK - ok
22:41:15.0077 10172  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:41:15.0077 10172  MSPQM - ok
22:41:15.0094 10172  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:41:15.0097 10172  MsRPC - ok
22:41:15.0117 10172  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
22:41:15.0117 10172  mssmbios - ok
22:41:15.0131 10172  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:41:15.0131 10172  MSTEE - ok
22:41:15.0143 10172  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:41:15.0143 10172  MTConfig - ok
22:41:15.0188 10172  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:41:15.0188 10172  Mup - ok
22:41:15.0218 10172  [ E78A365CC3E0FBFC018A33DCE01909F8 ] N360            C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
22:41:15.0219 10172  N360 - ok
22:41:15.0249 10172  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
22:41:15.0253 10172  napagent - ok
22:41:15.0262 10172  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:41:15.0264 10172  NativeWifiP - ok
22:41:15.0320 10172  [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20130517.008\ENG64.SYS
22:41:15.0321 10172  NAVENG - ok
22:41:15.0362 10172  [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20130517.008\EX64.SYS
22:41:15.0372 10172  NAVEX15 - ok
22:41:15.0412 10172  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:41:15.0417 10172  NDIS - ok
22:41:15.0436 10172  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:41:15.0437 10172  NdisCap - ok
22:41:15.0450 10172  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:41:15.0450 10172  NdisTapi - ok
22:41:15.0456 10172  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:41:15.0457 10172  Ndisuio - ok
22:41:15.0469 10172  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:41:15.0470 10172  NdisWan - ok
22:41:15.0478 10172  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:41:15.0479 10172  NDProxy - ok
22:41:15.0487 10172  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:41:15.0488 10172  NetBIOS - ok
22:41:15.0503 10172  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:41:15.0504 10172  NetBT - ok
22:41:15.0513 10172  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
22:41:15.0514 10172  Netlogon - ok
22:41:15.0537 10172  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:41:15.0540 10172  Netman - ok
22:41:15.0558 10172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:15.0559 10172  NetMsmqActivator - ok
22:41:15.0562 10172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:15.0563 10172  NetPipeActivator - ok
22:41:15.0576 10172  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:41:15.0579 10172  netprofm - ok
22:41:15.0608 10172  [ 24CF1304D899124336F67F88F3C15E21 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
22:41:15.0612 10172  netr28x - ok
22:41:15.0616 10172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:15.0617 10172  NetTcpActivator - ok
22:41:15.0619 10172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:41:15.0620 10172  NetTcpPortSharing - ok
22:41:15.0629 10172  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:41:15.0630 10172  nfrd960 - ok
22:41:15.0640 10172  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:41:15.0642 10172  NlaSvc - ok
22:41:15.0694 10172  [ 5839A8027D6D324A7CD494051A96628C ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:41:15.0706 10172  NOBU - ok
22:41:15.0727 10172  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:41:15.0728 10172  Npfs - ok
22:41:15.0749 10172  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:41:15.0750 10172  nsi - ok
22:41:15.0759 10172  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:41:15.0759 10172  nsiproxy - ok
22:41:15.0814 10172  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:41:15.0822 10172  Ntfs - ok
22:41:15.0829 10172  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:41:15.0830 10172  Null - ok
22:41:15.0842 10172  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:41:15.0843 10172  nvraid - ok
22:41:15.0857 10172  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:41:15.0858 10172  nvstor - ok
22:41:15.0875 10172  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:41:15.0876 10172  nv_agp - ok
22:41:15.0965 10172  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:41:15.0967 10172  odserv - ok
22:41:15.0984 10172  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:41:15.0985 10172  ohci1394 - ok
22:41:16.0027 10172  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:41:16.0028 10172  ose - ok
22:41:16.0176 10172  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:41:16.0197 10172  osppsvc - ok
22:41:16.0237 10172  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:41:16.0239 10172  p2pimsvc - ok
22:41:16.0252 10172  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:41:16.0255 10172  p2psvc - ok
22:41:16.0268 10172  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
22:41:16.0268 10172  Parport - ok
22:41:16.0305 10172  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:41:16.0305 10172  partmgr - ok
22:41:16.0315 10172  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:41:16.0317 10172  PcaSvc - ok
22:41:16.0327 10172  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
22:41:16.0328 10172  pci - ok
22:41:16.0343 10172  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
22:41:16.0343 10172  pciide - ok
22:41:16.0359 10172  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:41:16.0360 10172  pcmcia - ok
22:41:16.0387 10172  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:41:16.0387 10172  pcw - ok
22:41:16.0408 10172  pdfcDispatcher - ok
22:41:16.0456 10172  [ C1C3BAF078BE5A14384A4BA2D730817D ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
22:41:16.0457 10172  PDFProFiltSrvPP - ok
22:41:16.0473 10172  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:41:16.0476 10172  PEAUTH - ok
22:41:16.0524 10172  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:41:16.0525 10172  PerfHost - ok
22:41:16.0559 10172  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
22:41:16.0566 10172  pla - ok
22:41:16.0588 10172  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:41:16.0591 10172  PlugPlay - ok
22:41:16.0593 10172  PnkBstrA - ok
22:41:16.0606 10172  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:41:16.0607 10172  PNRPAutoReg - ok
22:41:16.0620 10172  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:41:16.0622 10172  PNRPsvc - ok
22:41:16.0651 10172  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:41:16.0654 10172  PolicyAgent - ok
22:41:16.0670 10172  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:41:16.0672 10172  Power - ok
22:41:16.0688 10172  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:41:16.0689 10172  PptpMiniport - ok
22:41:16.0701 10172  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
22:41:16.0702 10172  Processor - ok
22:41:16.0747 10172  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:41:16.0749 10172  ProfSvc - ok
22:41:16.0754 10172  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:41:16.0755 10172  ProtectedStorage - ok
22:41:16.0767 10172  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:41:16.0768 10172  Psched - ok
22:41:16.0807 10172  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:41:16.0813 10172  ql2300 - ok
22:41:16.0826 10172  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:41:16.0827 10172  ql40xx - ok
22:41:16.0845 10172  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:41:16.0847 10172  QWAVE - ok
22:41:16.0854 10172  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:41:16.0854 10172  QWAVEdrv - ok
22:41:16.0864 10172  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:41:16.0864 10172  RasAcd - ok
22:41:16.0887 10172  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:41:16.0887 10172  RasAgileVpn - ok
22:41:16.0892 10172  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:41:16.0894 10172  RasAuto - ok
22:41:16.0907 10172  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:41:16.0908 10172  Rasl2tp - ok
22:41:16.0924 10172  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
22:41:16.0926 10172  RasMan - ok
22:41:16.0939 10172  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:41:16.0939 10172  RasPppoe - ok
22:41:16.0949 10172  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:41:16.0949 10172  RasSstp - ok
22:41:16.0960 10172  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:41:16.0962 10172  rdbss - ok
22:41:16.0972 10172  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:41:16.0973 10172  rdpbus - ok
22:41:16.0979 10172  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:41:16.0980 10172  RDPCDD - ok
22:41:16.0989 10172  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:41:16.0989 10172  RDPENCDD - ok
22:41:16.0998 10172  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:41:16.0998 10172  RDPREFMP - ok
22:41:17.0042 10172  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:41:17.0043 10172  RDPWD - ok
22:41:17.0058 10172  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:41:17.0059 10172  rdyboost - ok
22:41:17.0075 10172  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:41:17.0076 10172  RemoteAccess - ok
22:41:17.0088 10172  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:41:17.0090 10172  RemoteRegistry - ok
22:41:17.0098 10172  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:41:17.0099 10172  RpcEptMapper - ok
22:41:17.0120 10172  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:41:17.0121 10172  RpcLocator - ok
22:41:17.0142 10172  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
22:41:17.0146 10172  RpcSs - ok
22:41:17.0191 10172  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:41:17.0191 10172  rspndr - ok
22:41:17.0265 10172  [ AFC12DFA4C7B089673AD67402CA19EDB ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:41:17.0268 10172  RTL8167 - ok
22:41:17.0304 10172  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
22:41:17.0306 10172  SamSs - ok
22:41:17.0328 10172  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:41:17.0329 10172  sbp2port - ok
22:41:17.0344 10172  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:41:17.0347 10172  SCardSvr - ok
22:41:17.0357 10172  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:41:17.0358 10172  scfilter - ok
22:41:17.0381 10172  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
22:41:17.0389 10172  Schedule - ok
22:41:17.0407 10172  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:41:17.0408 10172  SCPolicySvc - ok
22:41:17.0419 10172  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:41:17.0421 10172  SDRSVC - ok
22:41:17.0434 10172  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:41:17.0434 10172  secdrv - ok
22:41:17.0443 10172  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
22:41:17.0445 10172  seclogon - ok
22:41:17.0453 10172  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
22:41:17.0455 10172  SENS - ok
22:41:17.0478 10172  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:41:17.0480 10172  SensrSvc - ok
22:41:17.0500 10172  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:41:17.0500 10172  Serenum - ok
22:41:17.0518 10172  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
22:41:17.0519 10172  Serial - ok
22:41:17.0528 10172  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:41:17.0529 10172  sermouse - ok
22:41:17.0548 10172  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:41:17.0550 10172  SessionEnv - ok
22:41:17.0561 10172  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:41:17.0562 10172  sffdisk - ok
22:41:17.0572 10172  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:41:17.0573 10172  sffp_mmc - ok
22:41:17.0582 10172  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:41:17.0582 10172  sffp_sd - ok
22:41:17.0593 10172  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:41:17.0594 10172  sfloppy - ok
22:41:17.0646 10172  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
22:41:17.0651 10172  Sftfs - ok
22:41:17.0715 10172  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:41:17.0718 10172  sftlist - ok
22:41:17.0728 10172  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
22:41:17.0730 10172  Sftplay - ok
22:41:17.0741 10172  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
22:41:17.0742 10172  Sftredir - ok
22:41:17.0755 10172  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
22:41:17.0755 10172  Sftvol - ok
22:41:17.0767 10172  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:41:17.0768 10172  sftvsa - ok
22:41:17.0801 10172  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:41:17.0803 10172  SharedAccess - ok
22:41:17.0819 10172  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:41:17.0822 10172  ShellHWDetection - ok
22:41:17.0834 10172  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:41:17.0835 10172  SiSRaid2 - ok
22:41:17.0852 10172  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:41:17.0853 10172  SiSRaid4 - ok
22:41:17.0944 10172  [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:41:17.0958 10172  Skype C2C Service - ok
22:41:17.0967 10172  [ C44DA62FBCAE62803EA95600FC263065 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:41:17.0968 10172  SkypeUpdate - ok
22:41:17.0991 10172  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:41:17.0992 10172  Smb - ok
22:41:18.0011 10172  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:41:18.0012 10172  SNMPTRAP - ok
22:41:18.0024 10172  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:41:18.0024 10172  spldr - ok
22:41:18.0072 10172  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
22:41:18.0076 10172  Spooler - ok
22:41:18.0133 10172  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
22:41:18.0150 10172  sppsvc - ok
22:41:18.0186 10172  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:41:18.0188 10172  sppuinotify - ok
22:41:18.0288 10172  [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP           C:\Windows\System32\Drivers\N360x64\0502020.003\SRTSP64.SYS
22:41:18.0293 10172  SRTSP - ok
22:41:18.0337 10172  [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX          C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS
22:41:18.0337 10172  SRTSPX - ok
22:41:18.0405 10172  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:41:18.0407 10172  srv - ok
22:41:18.0427 10172  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:41:18.0429 10172  srv2 - ok
22:41:18.0447 10172  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:41:18.0448 10172  srvnet - ok
22:41:18.0479 10172  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:41:18.0481 10172  SSDPSRV - ok
22:41:18.0497 10172  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:41:18.0499 10172  SstpSvc - ok
22:41:18.0525 10172  Steam Client Service - ok
22:41:18.0551 10172  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:41:18.0551 10172  stexstor - ok
22:41:18.0574 10172  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
22:41:18.0580 10172  stisvc - ok
22:41:18.0602 10172  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
22:41:18.0602 10172  swenum - ok
22:41:18.0618 10172  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:41:18.0620 10172  swprv - ok
22:41:18.0644 10172  [ 6160145C7A87FC7672E8E3B886888176 ] SymDS           C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS
22:41:18.0646 10172  SymDS - ok
22:41:18.0664 10172  [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA          C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS
22:41:18.0668 10172  SymEFA - ok
22:41:18.0687 10172  [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
22:41:18.0688 10172  SymEvent - ok
22:41:18.0701 10172  [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON         C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS
22:41:18.0702 10172  SymIRON - ok
22:41:18.0715 10172  [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS         C:\Windows\System32\Drivers\N360x64\0502020.003\SYMNETS.SYS
22:41:18.0716 10172  SymNetS - ok
22:41:18.0755 10172  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
22:41:18.0762 10172  SysMain - ok
22:41:18.0774 10172  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:41:18.0775 10172  TabletInputService - ok
22:41:18.0787 10172  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:41:18.0789 10172  TapiSrv - ok
22:41:18.0871 10172  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:41:18.0874 10172  TBS - ok
22:41:18.0995 10172  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:41:19.0009 10172  Tcpip - ok
22:41:19.0036 10172  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:41:19.0051 10172  TCPIP6 - ok
22:41:19.0095 10172  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:41:19.0096 10172  tcpipreg - ok
22:41:19.0122 10172  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:41:19.0123 10172  TDPIPE - ok
22:41:19.0166 10172  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:41:19.0167 10172  TDTCP - ok
22:41:19.0211 10172  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:41:19.0212 10172  tdx - ok
22:41:19.0222 10172  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
22:41:19.0223 10172  TermDD - ok
22:41:19.0253 10172  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
22:41:19.0260 10172  TermService - ok
22:41:19.0272 10172  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:41:19.0274 10172  Themes - ok
22:41:19.0295 10172  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:41:19.0297 10172  THREADORDER - ok
22:41:19.0331 10172  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:41:19.0333 10172  TrkWks - ok
22:41:19.0373 10172  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:41:19.0374 10172  TrustedInstaller - ok
22:41:19.0394 10172  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:41:19.0395 10172  tssecsrv - ok
22:41:19.0407 10172  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:41:19.0408 10172  TsUsbFlt - ok
22:41:19.0422 10172  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:41:19.0423 10172  TsUsbGD - ok
22:41:19.0442 10172  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:41:19.0443 10172  tunnel - ok
22:41:19.0479 10172  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:41:19.0480 10172  uagp35 - ok
22:41:19.0493 10172  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:41:19.0495 10172  udfs - ok
22:41:19.0511 10172  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:41:19.0513 10172  UI0Detect - ok
22:41:19.0533 10172  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:41:19.0534 10172  uliagpkx - ok
22:41:19.0549 10172  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:41:19.0549 10172  umbus - ok
22:41:19.0565 10172  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:41:19.0566 10172  UmPass - ok
22:41:19.0617 10172  [ 927754ABF077AEB5504BE4E0F2C60C1B ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
22:41:19.0619 10172  UMVPFSrv - ok
22:41:19.0682 10172  [ 758C2CE427C343F780A205E28555C98D ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:41:19.0692 10172  UNS - ok
22:41:19.0717 10172  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:41:19.0720 10172  upnphost - ok
22:41:19.0769 10172  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
22:41:19.0769 10172  USBAAPL64 - ok
22:41:19.0790 10172  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:41:19.0790 10172  usbaudio - ok
22:41:19.0815 10172  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:41:19.0816 10172  usbccgp - ok
22:41:19.0843 10172  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:41:19.0844 10172  usbcir - ok
22:41:19.0858 10172  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:41:19.0859 10172  usbehci - ok
22:41:19.0880 10172  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:41:19.0882 10172  usbhub - ok
22:41:19.0901 10172  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:41:19.0901 10172  usbohci - ok
22:41:19.0914 10172  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:41:19.0914 10172  usbprint - ok
22:41:19.0950 10172  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:41:19.0951 10172  usbscan - ok
22:41:19.0967 10172  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:41:19.0968 10172  USBSTOR - ok
22:41:19.0977 10172  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:41:19.0977 10172  usbuhci - ok
22:41:19.0990 10172  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:41:19.0991 10172  UxSms - ok
22:41:20.0004 10172  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
22:41:20.0005 10172  VaultSvc - ok
22:41:20.0010 10172  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:41:20.0010 10172  vdrvroot - ok
22:41:20.0023 10172  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
22:41:20.0027 10172  vds - ok
22:41:20.0043 10172  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:41:20.0043 10172  vga - ok
22:41:20.0053 10172  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:41:20.0054 10172  VgaSave - ok
22:41:20.0069 10172  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:41:20.0071 10172  vhdmp - ok
22:41:20.0091 10172  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:41:20.0092 10172  viaide - ok
22:41:20.0105 10172  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:41:20.0106 10172  volmgr - ok
22:41:20.0123 10172  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:41:20.0125 10172  volmgrx - ok
22:41:20.0131 10172  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:41:20.0133 10172  volsnap - ok
22:41:20.0155 10172  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:41:20.0157 10172  vsmraid - ok
22:41:20.0281 10172  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
22:41:20.0293 10172  VSS - ok
22:41:20.0305 10172  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:41:20.0305 10172  vwifibus - ok
22:41:20.0320 10172  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:41:20.0321 10172  vwififlt - ok
22:41:20.0341 10172  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:41:20.0344 10172  W32Time - ok
22:41:20.0379 10172  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:41:20.0379 10172  WacomPen - ok
22:41:20.0458 10172  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:41:20.0459 10172  WANARP - ok
22:41:20.0463 10172  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:41:20.0464 10172  Wanarpv6 - ok
22:41:20.0554 10172  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:41:20.0563 10172  WatAdminSvc - ok
22:41:20.0607 10172  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
22:41:20.0614 10172  wbengine - ok
22:41:20.0624 10172  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:41:20.0626 10172  WbioSrvc - ok
22:41:20.0646 10172  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:41:20.0648 10172  wcncsvc - ok
22:41:20.0662 10172  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:41:20.0663 10172  WcsPlugInService - ok
22:41:20.0679 10172  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
22:41:20.0679 10172  Wd - ok
22:41:20.0736 10172  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:41:20.0742 10172  Wdf01000 - ok
22:41:20.0758 10172  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:41:20.0761 10172  WdiServiceHost - ok
22:41:20.0765 10172  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:41:20.0767 10172  WdiSystemHost - ok
22:41:20.0797 10172  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
22:41:20.0799 10172  WebClient - ok
22:41:20.0819 10172  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:41:20.0823 10172  Wecsvc - ok
22:41:20.0843 10172  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:41:20.0845 10172  wercplsupport - ok
22:41:20.0862 10172  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:41:20.0865 10172  WerSvc - ok
22:41:20.0883 10172  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:41:20.0883 10172  WfpLwf - ok
22:41:20.0895 10172  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:41:20.0895 10172  WIMMount - ok
22:41:20.0914 10172  WinDefend - ok
22:41:20.0920 10172  WinHttpAutoProxySvc - ok
22:41:20.0961 10172  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:41:20.0964 10172  Winmgmt - ok
22:41:21.0006 10172  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
22:41:21.0021 10172  WinRM - ok
22:41:21.0044 10172  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:41:21.0045 10172  WinUsb - ok
22:41:21.0072 10172  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:41:21.0080 10172  Wlansvc - ok
22:41:21.0134 10172  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:41:21.0134 10172  wlcrasvc - ok
22:41:21.0259 10172  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:41:21.0276 10172  wlidsvc - ok
22:41:21.0294 10172  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:41:21.0294 10172  WmiAcpi - ok
22:41:21.0320 10172  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:41:21.0322 10172  wmiApSrv - ok
22:41:21.0343 10172  WMPNetworkSvc - ok
22:41:21.0364 10172  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:41:21.0367 10172  WPCSvc - ok
22:41:21.0380 10172  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:41:21.0381 10172  WPDBusEnum - ok
22:41:21.0400 10172  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:41:21.0400 10172  ws2ifsl - ok
22:41:21.0409 10172  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
22:41:21.0412 10172  wscsvc - ok
22:41:21.0415 10172  WSearch - ok
22:41:21.0490 10172  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:41:21.0505 10172  wuauserv - ok
22:41:21.0546 10172  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:41:21.0547 10172  WudfPf - ok
22:41:21.0559 10172  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:41:21.0561 10172  WUDFRd - ok
22:41:21.0606 10172  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:41:21.0609 10172  wudfsvc - ok
22:41:21.0648 10172  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:41:21.0652 10172  WwanSvc - ok
22:41:21.0687 10172  [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
22:41:21.0688 10172  xusb21 - ok
22:41:21.0691 10172  ================ Scan global ===============================
22:41:21.0705 10172  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:41:21.0743 10172  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:41:21.0751 10172  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:41:21.0781 10172  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:41:21.0823 10172  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:41:21.0827 10172  [Global] - ok
22:41:21.0828 10172  ================ Scan MBR ==================================
22:41:21.0846 10172  [ 0C74571A0FA453AAE5932E52800057FF ] \Device\Harddisk0\DR0
22:41:22.0127 10172  \Device\Harddisk0\DR0 - ok
22:41:22.0128 10172  ================ Scan VBR ==================================
22:41:22.0130 10172  [ B5AA4E68C5035FE79D3912E99D4C014F ] \Device\Harddisk0\DR0\Partition1
22:41:22.0132 10172  \Device\Harddisk0\DR0\Partition1 - ok
22:41:22.0173 10172  [ 449E951B5AEAD9D09AC695B7A5AE3FE3 ] \Device\Harddisk0\DR0\Partition2
22:41:22.0176 10172  \Device\Harddisk0\DR0\Partition2 - ok
22:41:22.0221 10172  [ 40102DFFE2124E0B5F0B272FD2AD6486 ] \Device\Harddisk0\DR0\Partition3
22:41:22.0224 10172  \Device\Harddisk0\DR0\Partition3 - ok
22:41:22.0225 10172  ============================================================
22:41:22.0225 10172  Scan finished
22:41:22.0225 10172  ============================================================
22:41:22.0235 7128  Detected object count: 0
22:41:22.0235 7128  Actual detected object count: 0


#8 big13oss

big13oss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:23 PM

Posted 17 May 2013 - 09:51 PM

here's the other report you requested:

 

 

# AdwCleaner v2.301 - Rapport créé le 17/05/2013 à 22:45:42
# Mis à jour le 16/05/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Cecilia - UTILISATEUR-HP
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Cecilia\Downloads\adwcleaner.exe
# Option [Suppression]
 
 
***** [Services] *****
 
 
***** [Fichiers / Dossiers] *****
 
Dossier Supprimé : C:\Program Files (x86)\Conduit
Dossier Supprimé : C:\Program Files (x86)\Deals Plugin Extension
Dossier Supprimé : C:\Program Files (x86)\FLV_Runner
Dossier Supprimé : C:\Program Files (x86)\WiseConvert_B
Dossier Supprimé : C:\ProgramData\Ask
Dossier Supprimé : C:\ProgramData\boost_interprocess
Dossier Supprimé : C:\ProgramData\Browser Manager
Dossier Supprimé : C:\Users\Cecilia\AppData\Local\Conduit
Dossier Supprimé : C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhjaoldnkkbifioodjndkijecdeinld
Dossier Supprimé : C:\Users\Cecilia\AppData\Local\PackageAware
Dossier Supprimé : C:\Users\Cecilia\AppData\LocalLow\AskToolbar
Dossier Supprimé : C:\Users\Cecilia\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\Cecilia\AppData\LocalLow\searchresultstb
Dossier Supprimé : C:\Users\Cecilia\AppData\LocalLow\WiseConvert_B
Dossier Supprimé : C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\ConduitCommon
Dossier Supprimé : C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}
Dossier Supprimé : C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\mediabarim
Dossier Supprimé : C:\Users\utilisateur\AppData\Local\Conduit
Dossier Supprimé : C:\Users\utilisateur\AppData\Local\Deals Plugin Extension
Dossier Supprimé : C:\Users\utilisateur\AppData\Local\PackageAware
Dossier Supprimé : C:\Users\utilisateur\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\utilisateur\AppData\LocalLow\FLV_Runner
Dossier Supprimé : C:\Users\utilisateur\AppData\LocalLow\mediabarim
Dossier Supprimé : C:\Users\utilisateur\AppData\LocalLow\MyScrapNook_12
Dossier Supprimé : C:\Users\utilisateur\AppData\LocalLow\searchresultstb
Dossier Supprimé : C:\Users\utilisateur\AppData\LocalLow\WiseConvert_B
Dossier Supprimé : C:\Users\utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Dossier Supprimé : C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\t1ecflwr.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}
Dossier Supprimé : C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\t1ecflwr.default\extensions\staged
Dossier Supprimé : C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\t1ecflwr.default\mediabarim
Fichier Supprimé : C:\END
Fichier Supprimé : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
Fichier Supprimé : C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\searchplugins\Askcom.xml
Fichier Supprimé : C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\t1ecflwr.default\searchplugins\Search_Results.xml
Supprimé au redémarrage : C:\Program Files (x86)\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
Supprimé au redémarrage : C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhjaoldnkkbifioodjndkijecdeinld
Supprimé au redémarrage : C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\t1ecflwr.default\extensions\{1fd91a9c-410c-4090-bbcc-55d3450ef433}
 
***** [Registre] *****
 
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKCU\Software\AppDataLow\Software\Deals Plugin Extension
Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar
Clé Supprimée : HKCU\Software\AppDataLow\Software\WiseConvert_B
Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\DataMngr_Toolbar
Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\elhjaoldnkkbifioodjndkijecdeinld
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0214754E-4E7D-4589-829D-E2523E6A3085}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110211181106}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2713B394-286F-4D7C-89EA-4174EEAB9F5A}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3BBD3C14-4C16-4989-8366-95BC9179779D}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{65F159FB-5F5E-46F4-B45D-CCFA236D2073}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE6F06FB-0FC0-4499-828F-EE48088F504F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0214754E-4E7D-4589-829D-E2523E6A3085}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110211181106}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2713B394-286F-4D7C-89EA-4174EEAB9F5A}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3BBD3C14-4C16-4989-8366-95BC9179779D}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{65F159FB-5F5E-46F4-B45D-CCFA236D2073}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE6F06FB-0FC0-4499-828F-EE48088F504F}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Clé Supprimée : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Clé Supprimée : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0021806.BHO
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0021806.BHO.1
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0021806.Sandbox
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0021806.Sandbox.1
Clé Supprimée : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Clé Supprimée : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2849852
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3201318
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3282134
Clé Supprimée : HKLM\Software\Conduit
Clé Supprimée : HKLM\Software\DataMngr
Clé Supprimée : HKLM\Software\FLV_Runner
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07CEA379-7178-4758-9C80-969876E32395}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211181106}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{332CDD17-CC24-41CF-A9D6-207FE50210E6}
Clé Supprimée : HKLM\Software\TENCENT
Clé Supprimée : HKLM\Software\WiseConvert_B
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{07CEA379-7178-4758-9C80-969876E32395}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110211181106}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1A03F196-9617-4CA0-842B-A83CEECB022B}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{332CDD17-CC24-41CF-A9D6-207FE50210E6}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{950F80EF-32C2-47DD-9C35-9576E21EE66E}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\elhjaoldnkkbifioodjndkijecdeinld
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110211181106}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211181106}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{30D76A3F-3729-4AB5-9F82-BE431FFC843F}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A93AB94-3CDE-466B-9A69-4E2457433FEF}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EE10CA5E-F7BA-4DAA-944C-EB05B703CA61}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F2043615-5062-4EE5-8F58-608BAC991700}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110211181106}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3BBD3C14-4C16-4989-8366-95BC9179779D}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Deals Plugin Extension
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FLV_Runner Toolbar
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wincore MediaBar
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WiseConvert_B Toolbar
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{950F80EF-32C2-47DD-9C35-9576E21EE66E}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}
Clé Supprimée : HKLM\SOFTWARE\DataMngr
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}
Donnée Supprimée : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll
Donnée Supprimée : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{2713B394-286F-4D7C-89EA-4174EEAB9F5A}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{2713B394-286F-4D7C-89EA-4174EEAB9F5A}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{3BBD3C14-4C16-4989-8366-95BC9179779D}]
Valeur Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
 
***** [Navigateurs] *****
 
-\\ Internet Explorer v10.0.9200.16576
 
[OK] Le registre ne contient aucune entrée illégitime.
 
-\\ Mozilla Firefox v20.0 (en-US)
 
Fichier : C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\t1ecflwr.default\prefs.js
 
Supprimée : user_pref("browser.search.defaultengine", "Ask.com");
Supprimée : user_pref("browser.search.defaultenginename", "Search Results");
Supprimée : user_pref("browser.search.order.1", "Search Results");
Supprimée : user_pref("browser.search.selectedEngine", "Search Results");
Supprimée : user_pref("extensions.asktb.ff-original-keyword-url", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.InstallationThankYouPage", true);
Supprimée : user_pref("extensions.crossriderapp21806.21806.InstallationTime", 1359505975);
Supprimée : user_pref("extensions.crossriderapp21806.21806.InstallationUserSettings.searchUserConifrmation", fal[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.InstallationUserSettings.setHomepage", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.InstallationUserSettings.setNewTab", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.InstallationUserSettings.setSearch", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.active", true);
Supprimée : user_pref("extensions.crossriderapp21806.21806.addressbar", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.addressbarenhanced", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.backgroundjs", "\n\n//\n");
Supprimée : user_pref("extensions.crossriderapp21806.21806.backgroundver", 33);
Supprimée : user_pref("extensions.crossriderapp21806.21806.can_run_bg_code", true);
Supprimée : user_pref("extensions.crossriderapp21806.21806.certdomaininstaller", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.changeprevious", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.InstallationTime.expiration", "Fri Feb 01 2030[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.InstallationTime.value", "1359505975");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.InstallerParams.expiration", "Fri Feb 01 2030 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_aoi.value", "1359505975");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_arbitrary_code.expiration", "Mon Apr 15 2[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_arbitrary_code.value", "%22/**/%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_blocklist.expiration", "Mon Apr 15 2013 2[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_blocklist.value", "%22nonexistantdomain.c[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_country_code.expiration", "Mon Apr 22 201[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_country_code.value", "%22CA%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_currenttime.expiration", "Fri Feb 01 2030[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_currenttime.value", "%221364833275%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_hotfix20111102645.value", "%221%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installer_params.expiration", "Fri Feb 01[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installer_params.value", "%7B%22source_id[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installtime.expiration", "Fri Feb 01 2030[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installtime.value", "%221364833275%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 20[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_parent_zoneid.value", "%2255443%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_product_id.value", "%221266%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_zoneid.value", "%22137200%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.dbtest.expiration", "Fri Feb 01 2030 00:00:00 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.dbtest.value", "1366075350669");
Supprimée : user_pref("extensions.crossriderapp21806.21806.description", "Deals Plugin");
Supprimée : user_pref("extensions.crossriderapp21806.21806.domain", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.enablesearch", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.fbremoteurl", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.group", 0);
Supprimée : user_pref("extensions.crossriderapp21806.21806.homepage", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.iframe", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.InstallerIdentifiers.expiration", "Fri Feb[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.InstallerIdentifiers.value", "%7B%22instal[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_appVer.expiration", "Fri Feb 01 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_appVer.value", "47");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_lastVersion.expiration", "Fri Fe[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_lastVersion.value", "1");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_meta.expiration", "Fri Feb 01 20[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_meta.value", "%7B%7D");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_nextCheck.expiration", "Tue Apr [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_nextCheck.value", "true");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_queue.expiration", "Fri Feb 01 2[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_queue.value", "%7B%7D");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.SoftwareDetected.expiration", "Fri Feb 01 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.SoftwareDetected.value", "%7B%22AnySoftwar[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.manifesturl", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.name", "Deals Plugin Extension");
Supprimée : user_pref("extensions.crossriderapp21806.21806.newtab", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.opensearch", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1.code", "appAPI._cr_config={appID:fun[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1.name", "base");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1.ver", 4);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000014.code", "Array.prototype.indexO[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000014.name", "GPL Plugin (Loader)");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000014.ver", 15);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000015.code", "var a=appAPI.db.getLis[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000015.name", "GPL Background (BG)");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000015.ver", 35);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_13.code", "(function(a){a.selectedText[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_13.name", "CrossriderAppUtils");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_13.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_14.code", "if(typeof(appAPI)===\"undef[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_14.name", "CrossriderUtils");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_14.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_16.code", "if((typeof isBackground===\[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_16.name", "FFAppAPIWrapper");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_16.ver", 5);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_17.code", "if(typeof window!==\"undefi[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_17.name", "jQuery");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_17.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_21.code", "var CrossriderDebugManager=[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_21.name", "debug");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_21.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_22.code", "(function(a){appAPI.queueMa[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_22.name", "resources");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_22.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_28.code", "var CrossriderInitializerPl[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_28.name", "initializer");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_28.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_4.code", "var jQuery = $jquery_171 = $[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_4.name", "jquery_1_7_1");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_4.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_47.code", "(function(){appAPI.ready=fu[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_47.name", "resources_background");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_47.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_64.code", "(function(){var h=\"__CR_EM[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_64.name", "appApiMessage");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_64.ver", 1);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_72.code", "if(appAPI.__should_activate[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_72.name", "appApiValidation");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_72.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_78.code", "if(typeof jQuery!==\"undefi[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_78.name", "CrossriderInfo");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_78.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_98.code", "(function(){var b=\"cr_\"+a[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_98.name", "omniCommands");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_98.ver", 1);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins_lists.plugins_0", "4,14,78,16,64,47,72,98,100[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins_lists.plugins_1", "17,14,78,13,16,64,4,1,21,2[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins_lists.plugins_5", "4,14,78,13,16,64,47,72");
Supprimée : user_pref("extensions.crossriderapp21806.21806.pluginsurl", "hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/a[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.pluginsversion", 45);
Supprimée : user_pref("extensions.crossriderapp21806.21806.publisher", "Innovative Apps");
Supprimée : user_pref("extensions.crossriderapp21806.21806.searchstatus", 0);
Supprimée : user_pref("extensions.crossriderapp21806.21806.setnewtab", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.settingsurl", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.thankyou", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.updateinterval", 360);
Supprimée : user_pref("extensions.crossriderapp21806.21806.ver", 47);
Supprimée : user_pref("extensions.crossriderapp21806.adsOldValue", -1);
Supprimée : user_pref("extensions.crossriderapp21806.apps", "21806");
Supprimée : user_pref("extensions.crossriderapp21806.bic", "13c88dfc3fcb24e0af2ccc5fcfcb6712");
Supprimée : user_pref("extensions.crossriderapp21806.cid", 21806);
Supprimée : user_pref("extensions.crossriderapp21806.firstrun", false);
Supprimée : user_pref("extensions.crossriderapp21806.hadappinstalled", true);
Supprimée : user_pref("extensions.crossriderapp21806.installationdate", 1359506032);
Supprimée : user_pref("extensions.crossriderapp21806.lastcheck", 22767923);
Supprimée : user_pref("extensions.crossriderapp21806.lastcheckitem", 22767923);
Supprimée : user_pref("extensions.crossriderapp21806.modetype", "production");
Supprimée : user_pref("extensions.crossriderapp21806.reportInstall", true);
Supprimée : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&gct=ds&appid=107&systemid=2&apn_d[...]
 
Fichier : C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\prefs.js
 
C:\Users\Cecilia\AppData\Roaming\Mozilla\Firefox\Profiles\v6iq8o6h.default\user.js ... Supprimé !
 
Supprimée : user_pref("CT2849852..clientLogIsEnabled", false);
Supprimée : user_pref("CT2849852..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Supprimée : user_pref("CT2849852..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Supprimée : user_pref("CT2849852.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Supprimée : user_pref("CT2849852.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2849852.BrowserCompStateIsOpen_129642290922900978", true);
Supprimée : user_pref("CT2849852.CTID", "CT2849852");
Supprimée : user_pref("CT2849852.CurrentServerDate", "7-8-2012");
Supprimée : user_pref("CT2849852.DSInstall", false);
Supprimée : user_pref("CT2849852.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2849852.DialogsGetterLastCheckTime", "Mon Aug 06 2012 09:50:10 GMT-0400");
Supprimée : user_pref("CT2849852.DownloadReferralCookieData", "");
Supprimée : user_pref("CT2849852.EMailNotifierPollDate", "Mon May 28 2012 13:58:36 GMT-0400");
Supprimée : user_pref("CT2849852.FeedLastCount129349795937781608", 230);
Supprimée : user_pref("CT2849852.FeedPollDate129313974171006416", "Mon May 28 2012 12:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313975698350231", "Mon May 28 2012 12:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313976370850190", "Mon May 28 2012 12:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313976648818968", "Mon May 28 2012 12:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313977444757117", "Mon May 28 2012 12:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313980389131455", "Mon May 28 2012 12:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313980655381977", "Mon May 28 2012 12:28:37 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313980886163259", "Mon May 28 2012 12:28:37 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313981234756535", "Mon May 28 2012 12:28:37 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313983226631720", "Mon May 28 2012 12:28:37 GMT-0400");
Supprimée : user_pref("CT2849852.FeedPollDate129313983607725691", "Mon May 28 2012 12:28:37 GMT-0400");
Supprimée : user_pref("CT2849852.FeedTTL129313974171006416", 10);
Supprimée : user_pref("CT2849852.FeedTTL129313977444757117", 15);
Supprimée : user_pref("CT2849852.FeedTTL129313980655381977", 5);
Supprimée : user_pref("CT2849852.FeedTTL129313981234756535", 5);
Supprimée : user_pref("CT2849852.FirstServerDate", "28-5-2012");
Supprimée : user_pref("CT2849852.FirstTime", true);
Supprimée : user_pref("CT2849852.FirstTimeFF3", true);
Supprimée : user_pref("CT2849852.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT2849852.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2849852.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2849852.HPInstall", false);
Supprimée : user_pref("CT2849852.HasUserGlobalKeys", true);
Supprimée : user_pref("CT2849852.Initialize", true);
Supprimée : user_pref("CT2849852.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2849852.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT2849852.InstallationId", "fftCA32.tmp.exe");
Supprimée : user_pref("CT2849852.InstallationType", "XPE");
Supprimée : user_pref("CT2849852.InstalledDate", "Mon May 28 2012 10:28:34 GMT-0400");
Supprimée : user_pref("CT2849852.IsGrouping", false);
Supprimée : user_pref("CT2849852.IsInitSetupIni", true);
Supprimée : user_pref("CT2849852.IsMulticommunity", false);
Supprimée : user_pref("CT2849852.IsOpenThankYouPage", true);
Supprimée : user_pref("CT2849852.IsOpenUninstallPage", false);
Supprimée : user_pref("CT2849852.LanguagePackLastCheckTime", "Mon Aug 06 2012 13:14:59 GMT-0400");
Supprimée : user_pref("CT2849852.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2849852.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT2849852.LastLogin_3.12.0.8", "Mon May 28 2012 10:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.LastLogin_3.12.2.3", "Wed May 30 2012 19:43:03 GMT-0400");
Supprimée : user_pref("CT2849852.LastLogin_3.13.0.6", "Tue Jul 17 2012 09:42:13 GMT-0400");
Supprimée : user_pref("CT2849852.LastLogin_3.14.1.0", "Mon Aug 06 2012 18:08:34 GMT-0400");
Supprimée : user_pref("CT2849852.LatestVersion", "3.14.1.0");
Supprimée : user_pref("CT2849852.Locale", "fr");
Supprimée : user_pref("CT2849852.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2849852.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2849852.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2849852.MyStuffEnabledAtInstallation", true);
Supprimée : user_pref("CT2849852.OriginalFirstVersion", "3.12.0.8");
Supprimée : user_pref("CT2849852.SearchCaption", "BittorrentBar_FR Customized Web Search");
Supprimée : user_pref("CT2849852.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2849852.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT284[...]
Supprimée : user_pref("CT2849852.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT2849852.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT2849852.SearchInNewTabLastCheckTime", "Mon Aug 06 2012 13:14:51 GMT-0400");
Supprimée : user_pref("CT2849852.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT2849852.SearchProtectorToolbarDisabled", true);
Supprimée : user_pref("CT2849852.SendProtectorDataViaLogin", true);
Supprimée : user_pref("CT2849852.ServiceMapLastCheckTime", "Mon Aug 06 2012 14:08:28 GMT-0400");
Supprimée : user_pref("CT2849852.SettingsLastCheckTime", "Mon Aug 06 2012 14:08:27 GMT-0400");
Supprimée : user_pref("CT2849852.SettingsLastUpdate", "1342353733");
Supprimée : user_pref("CT2849852.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2849852&SearchSource=13");
Supprimée : user_pref("CT2849852.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT2849852.ThirdPartyComponentsLastCheck", "Mon May 28 2012 10:28:33 GMT-0400");
Supprimée : user_pref("CT2849852.ThirdPartyComponentsLastUpdate", "1331805999");
Supprimée : user_pref("CT2849852.ToolbarDisabled", true);
Supprimée : user_pref("CT2849852.ToolbarShrinkedFromSetup", false);
Supprimée : user_pref("CT2849852.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2849852");
Supprimée : user_pref("CT2849852.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Supprimée : user_pref("CT2849852.UserID", "UN17579282428947596");
Supprimée : user_pref("CT2849852.WeatherNetwork", "");
Supprimée : user_pref("CT2849852.WeatherPollDate", "Mon May 28 2012 13:58:46 GMT-0400");
Supprimée : user_pref("CT2849852.WeatherUnit", "C");
Supprimée : user_pref("CT2849852.alertChannelId", "1241893");
Supprimée : user_pref("CT2849852.autoDisableScopes", -1);
Supprimée : user_pref("CT2849852.backendstorage.cbcountry_000", "4341");
Supprimée : user_pref("CT2849852.backendstorage.cbfirsttime", "4D6F6E204D617920323820323031322031303A32383A33392[...]
Supprimée : user_pref("CT2849852.backendstorage.scriptsource", "687474703A2F2F3132372E302E302E313A31303030302F67[...]
Supprimée : user_pref("CT2849852.backendstorage.url_history0001", "687474703A2F2F396761672E636F6D2F686F742F69642[...]
Supprimée : user_pref("CT2849852.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Supprimée : user_pref("CT2849852.globalFirstTimeInfoLastCheckTime", "Mon May 28 2012 10:28:34 GMT-0400");
Supprimée : user_pref("CT2849852.homepageProtectorEnableByLogin", true);
Supprimée : user_pref("CT2849852.initDone", true);
Supprimée : user_pref("CT2849852.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT2849852.myStuffEnabled", true);
Supprimée : user_pref("CT2849852.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2849852.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT2849852.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2849852.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT2849852.navigateToUrlOnSearch", false);
Supprimée : user_pref("CT2849852.revertSettingsEnabled", false);
Supprimée : user_pref("CT2849852.searchProtectorDialogDelayInSec", 10);
Supprimée : user_pref("CT2849852.searchProtectorEnableByLogin", true);
Supprimée : user_pref("CT2849852.testingCtid", "");
Supprimée : user_pref("CT2849852.toolbarAppMetaDataLastCheckTime", "Mon Aug 06 2012 14:08:28 GMT-0400");
Supprimée : user_pref("CT2849852.toolbarContextMenuLastCheckTime", "Mon May 28 2012 10:28:36 GMT-0400");
Supprimée : user_pref("CT2849852.usagesFlag", 2);
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2849852/CT2849852[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2849852", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2849852",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=fr", "\"608[...]
Supprimée : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Cecilia\\AppData\\Roaming\\Mozilla\[...]
Supprimée : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.12.0.8");
Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
Supprimée : user_pref("CommunityToolbar.ToolbarsList", "CT2849852");
Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2849852");
Supprimée : user_pref("CommunityToolbar.ToolbarsList4", "CT2849852");
Supprimée : user_pref("CommunityToolbar.globalUserId", "bcced22c-7307-494d-b45d-9434fca78c7a");
Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2849852");
Supprimée : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Mon May 28 2012 10:28:4[...]
Supprimée : user_pref("CommunityToolbar.notifications.alertEnabled", false);
Supprimée : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.locale", "en");
Supprimée : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Supprimée : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Mon May 28 2012 10:28:34 GMT-0400");
Supprimée : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Supprimée : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.notifications.userId", "5424e3d7-8d5b-488d-ba5b-bb24a7008d8a");
Supprimée : user_pref("CommunityToolbar.originalHomepage", "chrome://branding/locale/browserconfig.properties");
Supprimée : user_pref("CommunityToolbar.originalSearchEngine", "Google");
Supprimée : user_pref("browser.search.order.1", "Ask.com");
Supprimée : user_pref("extensions.crossriderapp21806.21806.InstallationTime", 1360349114);
Supprimée : user_pref("extensions.crossriderapp21806.21806.active", true);
Supprimée : user_pref("extensions.crossriderapp21806.21806.addressbar", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.addressbarenhanced", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.backgroundjs", "\n\n//\n");
Supprimée : user_pref("extensions.crossriderapp21806.21806.backgroundver", 37);
Supprimée : user_pref("extensions.crossriderapp21806.21806.can_run_bg_code", true);
Supprimée : user_pref("extensions.crossriderapp21806.21806.certdomaininstaller", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.changeprevious", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.InstallationTime.expiration", "Fri Feb 01 2030[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.InstallationTime.value", "1360349114");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_aoi.value", "1360349114");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_arbitrary_code.expiration", "Mon May 13 2[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_arbitrary_code.value", "%22appAPI.db.get%[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_blocklist.expiration", "Mon May 13 2013 1[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_blocklist.value", "%22nonexistantdomain.c[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_cf_bu1.expiration", "Fri Feb 01 2030 00:0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_cf_bu1.value", "1360349148");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_country_code.expiration", "Mon May 20 201[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_country_code.value", "%22CA%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_crr.expiration", "Fri Feb 01 2030 00:00:0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_crr.value", "1368418572");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_currenttime.expiration", "Fri Feb 01 2030[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_currenttime.value", "%221367851544%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_hotfix20111102645.value", "%221%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_ib_disclosure_tmp.expiration", "Mon May 1[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_ib_disclosure_tmp.value", "1368457075");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installer_params.expiration", "Fri Feb 01[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installer_params.value", "%7B%22source_id[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installtime.expiration", "Fri Feb 01 2030[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_installtime.value", "%221360298443%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 20[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_parent_zoneid.value", "%2214019%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_pc_20120828.expiration", "Fri Feb 01 2030[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_pc_20120828.value", "1360349122061");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_product_id.value", "%221180%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:0[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie._GPL_zoneid.value", "%22141258%22");
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.dbtest.expiration", "Fri Feb 01 2030 00:00:00 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.cookie.dbtest.value", "1360349118986");
Supprimée : user_pref("extensions.crossriderapp21806.21806.description", "Deals Plugin");
Supprimée : user_pref("extensions.crossriderapp21806.21806.domain", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.enablesearch", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.fbremoteurl", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.group", 0);
Supprimée : user_pref("extensions.crossriderapp21806.21806.homepage", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.iframe", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_appVer.expiration", "Fri Feb 01 [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_appVer.value", "52");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_lastVersion.expiration", "Fri Fe[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_lastVersion.value", "1");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_meta.expiration", "Fri Feb 01 20[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_meta.value", "%7B%7D");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_nextCheck.expiration", "Mon May [...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_nextCheck.value", "true");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_queue.expiration", "Fri Feb 01 2[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_queue.value", "%7B%7D");
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_remote_resources.expiration", "F[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.internaldb.Resources_remote_resources.value", "%7B%22[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.manifesturl", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.name", "Deals Plugin Extension");
Supprimée : user_pref("extensions.crossriderapp21806.21806.newtab", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.opensearch", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1.code", "appAPI._cr_config={appID:fun[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1.name", "base");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1.ver", 6);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000014.code", "Array.prototype.indexO[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000014.name", "GPL Plugin (Loader)");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000014.ver", 15);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000015.code", "var a=appAPI.db.getLis[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000015.name", "GPL Background (BG)");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_1000015.ver", 38);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_13.code", "(function(a){a.selectedText[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_13.name", "CrossriderAppUtils");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_13.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_14.code", "if(typeof(appAPI)===\"undef[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_14.name", "CrossriderUtils");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_14.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_16.code", "if((typeof isBackground===\[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_16.name", "FFAppAPIWrapper");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_16.ver", 7);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_17.code", "if(typeof window!==\"undefi[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_17.name", "jQuery");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_17.ver", 4);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_21.code", "var CrossriderDebugManager=[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_21.name", "debug");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_21.ver", 4);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_22.code", "(function(a){appAPI.queueMa[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_22.name", "resources");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_22.ver", 4);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_28.code", "var CrossriderInitializerPl[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_28.name", "initializer");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_28.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_4.code", "var jQuery = $jquery_171 = $[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_4.name", "jquery_1_7_1");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_4.ver", 4);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_47.code", "(function(){appAPI.ready=fu[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_47.name", "resources_background");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_47.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_64.code", "(function(){var h=\"__CR_EM[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_64.name", "appApiMessage");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_64.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_72.code", "if(appAPI.__should_activate[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_72.name", "appApiValidation");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_72.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_78.code", "if(typeof jQuery!==\"undefi[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_78.name", "CrossriderInfo");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_78.ver", 3);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_98.code", "(function(){var b=\"cr_\"+a[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_98.name", "omniCommands");
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins.plugin_98.ver", 2);
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins_lists.plugins_0", "4,14,78,16,64,47,72,98,100[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins_lists.plugins_1", "17,14,78,13,16,64,4,1,21,2[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.plugins_lists.plugins_5", "4,14,78,13,16,64,47,72");
Supprimée : user_pref("extensions.crossriderapp21806.21806.pluginsurl", "hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/a[...]
Supprimée : user_pref("extensions.crossriderapp21806.21806.pluginsversion", 50);
Supprimée : user_pref("extensions.crossriderapp21806.21806.publisher", "Innovative Apps");
Supprimée : user_pref("extensions.crossriderapp21806.21806.searchstatus", 0);
Supprimée : user_pref("extensions.crossriderapp21806.21806.setnewtab", false);
Supprimée : user_pref("extensions.crossriderapp21806.21806.settingsurl", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.thankyou", "");
Supprimée : user_pref("extensions.crossriderapp21806.21806.updateinterval", 360);
Supprimée : user_pref("extensions.crossriderapp21806.21806.ver", 52);
Supprimée : user_pref("extensions.crossriderapp21806.adsOldValue", -1);
Supprimée : user_pref("extensions.crossriderapp21806.apps", "21806");
Supprimée : user_pref("extensions.crossriderapp21806.bic", "13cbb202cd02fd742743d020e627ed8a");
Supprimée : user_pref("extensions.crossriderapp21806.cid", 21806);
Supprimée : user_pref("extensions.crossriderapp21806.firstrun", false);
Supprimée : user_pref("extensions.crossriderapp21806.hadappinstalled", true);
Supprimée : user_pref("extensions.crossriderapp21806.installationdate", 1360349114);
Supprimée : user_pref("extensions.crossriderapp21806.lastcheck", 22807618);
Supprimée : user_pref("extensions.crossriderapp21806.lastcheckitem", 22807618);
Supprimée : user_pref("extensions.crossriderapp21806.modetype", "production");
Supprimée : user_pref("extensions.crossriderapp21806.reportInstall", true);
Supprimée : user_pref("extensions.crossriderapp21806.statsDailyCounter", 28);
Supprimée : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2849852&SearchSource=2&q=[...]
 
-\\ Google Chrome v26.0.1410.64
 
Fichier : C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Supprimée [l.29] : search_url = "hxxp://dts.search-results.com/sr?src=crb&gct=ds&appid=107&systemid=2&apn_dtid=I[...]
Supprimée [l.2523] : urls_to_restore_on_startup = [ "hxxp://search.bearshare.net", "hxxp://search.imesh.net", "htt[...]
 
Fichier : C:\Users\Cecilia\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] Le fichier ne contient aucune entrée illégitime.
 
*************************
 
AdwCleaner[S1].txt - [55117 octets] - [17/05/2013 22:45:42]
 
########## EOF - C:\AdwCleaner[S1].txt - [55178 octets] ##########


#9 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:09:23 PM

Posted 18 May 2013 - 09:26 AM

  1. Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.
    You may download both x32 and x64 versions of Java from http://www.java.com/en/download/manual.jsp

    Uninstall the following older Java:

    Java 7 Update17

    Then install the downloaded Java versions.
     
  2. Run CCleaner (make sure under Windows tab all the boxes of Internet Explorer and Windows explorer are checked except for saved passwords. Under System check Empty Recycle Bin and Temporary Files.
    Under Application tab all the boxes should be checked except any option to remove saved passwords.
     
  3. Tell me how is the system functioning.


#10 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,719 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:09:23 PM

Posted 25 May 2013 - 07:37 AM

This thread will now be closed since the issue seems to be resolved.

If you need this topic reopened, please send me a Private Message and I will reopen it for you.

If you should have a new issue, please start a new topic.

Every one else should start a new topic.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users