Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with HTML/Iframe.B.Gen


  • Please log in to reply
9 replies to this topic

#1 Dannyboy100

Dannyboy100

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 10 May 2013 - 09:54 AM

I have a laptop running windows 7, eset security ver 4 and malwarebytes.

 

I ran a computer scan with eset and got the message saying I was infected with this virus and gave 2 different paths. It didn't give me the option to clean, only delete and do nothing. So I deleted the files, but they keep coming back. I'm not at my computer to send a screenshot.

 

Please let me know what I need to do to start the process of getting this virus out of my laptop, it's driving me nuts!



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:06 AM

Posted 10 May 2013 - 10:54 AM

Hello danny reboot into Safe Mode with Networking... Empty your temp folders using TFC (Temporary File Cleaner)
[list]
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
  • Run ESET again.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Dannyboy100

Dannyboy100
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2013 - 06:34 AM

Thanks for the quick reply.

 

I ran tfc in safe mode and then ran eset. Eset didn't find anything on the scan.

 

So far so good, but how can I be sure its gone?

 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:06 AM

Posted 11 May 2013 - 09:15 AM

Ok, lets also do these.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download[url="http://www.bleepingcomputer.com/download/tdsskiller/dl/4/"] TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Dannyboy100

Dannyboy100
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2013 - 01:10 PM

I'm having other issues stemming from this virus: wireless internet access keeps resetting in sleep, BITS service not restarting (unable to run windows update etc.

 

Do you think my best option would be to re-format and do a clean install?

 

I will run and post the txt files, however.

 

Then you can give me your recommendation

 

Thank you



#6 Dannyboy100

Dannyboy100
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2013 - 01:26 PM

MiniToolBox by Farbar  Version:21-04-2013
Ran by Danny (administrator) on 11-05-2013 at 14:12:53
Running from "Z:\Danny\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: 176.34.57.168:80

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "localhost,127.0.0.1"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

211.221.224.100 hdcorea.goanygate.com

========================= IP Configuration: ================================

Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Martiand-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
   Physical Address. . . . . . . . . : E0-CA-94-12-41-BD
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::dc00:6491:9e87:5919%15(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, May 11, 2013 12:01:00 PM
   Lease Expires . . . . . . . . . . : Sunday, May 12, 2013 12:00:59 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 249612948
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-BB-9A-5D-E0-CA-94-12-41-BD
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 38-60-77-0C-D0-5E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E9F372F8-3AB0-4C54-B9E1-FE157F5A6B92}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4006:802::1003
   173.194.43.40
   173.194.43.41
   173.194.43.37
   173.194.43.39
   173.194.43.35
   173.194.43.46
   173.194.43.33
   173.194.43.38
   173.194.43.32
   173.194.43.36
   173.194.43.34

Pinging google.com [74.125.226.206] with 32 bytes of data:
Reply from 74.125.226.206: bytes=32 time=10ms TTL=252
Reply from 74.125.226.206: bytes=32 time=16ms TTL=252

Ping statistics for 74.125.226.206:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 10ms, Maximum = 16ms, Average = 13ms
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.139.183.24
   98.138.253.109
   206.190.36.45

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=500ms TTL=49
Reply from 98.138.253.109: bytes=32 time=476ms TTL=49

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 476ms, Maximum = 500ms, Average = 488ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...e0 ca 94 12 41 bd ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
 11...38 60 77 0c d0 5e ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.2     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.2    281
      192.168.1.2  255.255.255.255         On-link       192.168.1.2    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.2    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.2    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.2    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 15    281 fe80::/64                On-link
 15    281 fe80::dc00:6491:9e87:5919/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/11/2013 11:59:47 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/11/2013 11:53:58 AM) (Source: Application Hang) (User: )
Description: The program explorer.exe version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: fe4

Start Time: 01ce4e58de75f39b

Termination Time: 15

Application Path: C:\windows\explorer.exe

Report Id: f54ee18f-ba52-11e2-8766-3860770cd05e

Error: (05/11/2013 11:52:45 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:36:00 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:32:17 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:27:13 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:26:49 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:25:32 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:25:17 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:25:14 AM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x80070422

System errors:
=============
Error: (05/11/2013 11:58:23 AM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (05/11/2013 11:58:23 AM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (05/11/2013 11:58:19 AM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (05/11/2013 11:58:12 AM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (05/11/2013 11:58:08 AM) (Source: NETLOGON) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (05/11/2013 11:06:03 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: 490@01010004

Error: (05/11/2013 11:06:01 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: 490@01010004

Error: (05/11/2013 11:03:52 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (05/11/2013 11:03:37 AM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\DirectNT.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (05/11/2013 11:03:37 AM) (Source: NETLOGON) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Microsoft Office Sessions:
=========================
Error: (05/11/2013 11:59:47 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/11/2013 11:53:58 AM) (Source: Application Hang)(User: )
Description: explorer.exe6.1.7601.17567fe401ce4e58de75f39b15C:\windows\explorer.exef54ee18f-ba52-11e2-8766-3860770cd05e

Error: (05/11/2013 11:52:45 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:36:00 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:32:17 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:27:13 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:26:49 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:25:32 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:25:17 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

Error: (05/11/2013 11:25:14 AM) (Source: SignInAssistant)(User: )
Description: StartService failed with hr = 0x80070422

CodeIntegrity Errors:
===================================
  Date: 2013-05-11 11:03:26.683
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-11 11:03:26.636
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-11 10:42:26.167
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-11 10:42:26.120
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-11 09:23:12.151
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-11 09:23:12.104
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-11 08:21:43.947
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-11 08:21:43.900
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-10 23:13:20.832
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-10 23:13:20.770
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\rdpdispm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

=========================== Installed Programs ============================

7-Zip 9.22beta
Addictive Drums
Addictive Drums 1.5.2
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.169)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Reader X (10.1.6) MUI (Version: 10.1.6)
AmpegSVX (Version: 1.1.0)
AmpliTube 3 (Version: 3.0.0)
AmpliTube Fender (Version: 1.1.0)
AmpliTube X-GEAR (Version: 1.1.0)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.6.14.0)
AudioEase Altiverb VST RTAS v6.10
Avid Audio Drivers (x64) (Version: 8.0.5)
Avid Mbox 2 USB Drivers (x64) (Version: 9.0.2)
Avid Mbox Driver 1.0.19 (x64) (Version: 1.0.19)
Avid Mbox Mini Driver 1.0.6 (x64) (Version: 1.0.6)
Avid Mbox Pro Driver 1.0.11 (x64) (Version: 1.0.11)
Avid Pro Tools Creative Collection 8.0.5 (Version: 8.0.5)
Avid Pro Tools LE 8.0.5 (Version: 8.0.5)
Bejeweled 3 (Version: 2.2.0.97)
Bigasoft Audio Converter 3.6.20.4501
Bonjour (Version: 3.0.0.10)
Canon iP2700 series Printer Driver
CCleaner (Version: 4.01)
CDA to MP3 Converter v3.2 build 1159
Chuzzle Deluxe (Version: 2.2.0.95)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Digidesign ElevenRack Driver 1.0.8 (x64) (Version: 1.0.8)
Dropbox (Version: 1.1.45)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
EASEUS Partition Master 9.1.0 Home Edition
EaseUS Todo Backup Free 3.5 (Version: 3.5.0.1)
EASEUS Todo Backup Professional 2.5 (Version: 2.5.0.1)
ESET Online Scanner v3
ESET Smart Security (Version: 4.2.71.2)
FATE - The Traitor Soul (Version: 2.2.0.95)
foobar2000 v1.1.8 (Version: 1.1.8)
Free DigiRack Plug-Ins 8.0.5 (Version: 8.0.5)
Google Chrome (Version: 26.0.1410.64)
High-Definition Video Playback (Version: 7.3.10800.5.0)
iDump (Freeware) Build:29
IHA_MessageCenter (Version: 1.6.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2353)
Intel® Rapid Storage Technology (Version: 10.1.2.1004)
Interlok driver setup x64 (Version: 5.9.0)
iTunes (Version: 10.7.0.21)
iTunesDSM (Version: 0.9.6)
Java Auto Updater (Version: 2.0.2.1)
Java™ 6 Update 20 (Version: 6.0.200)
Java™ 7 Update 5 (64-bit) (Version: 7.0.50)
Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Label@Once 1.0 (Version: 1.0)
Line 6 Uninstaller (Version: )
Logitech Harmony Remote Software (Version: 1.0.110307)
LoopBe1 - Internal MIDI Port
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Medieval CUE Splitter (Version: 1.2.0)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
moreTunes 2.0.4 (Version: 2.0.4)
MotoHelper 2.1.32 Driver 5.4.0 (Version: 2.1.32)
MotoHelper MergeModules (Version: 1.2.0)
Motorola Mobile Drivers Installation 5.4.0 (Version: 5.4.0)
Mozilla Firefox 9.0.1 (x86 en-US) (Version: 9.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MusicBrainz Picard (Version: 0.16)
Native Instruments Controller Editor (Version: 1.1.1.189)
Native Instruments Guitar Rig 4 (Version: 4.0.7.960)
Native Instruments Service Center (Version: 2.2.0.367)
Nero 10 ClipartPack (Version: 10.6.10000.11.0)
Nero 10 Kwik Themes 1 (Version: 10.6.10000.1.0)
Nero 10 Kwik Themes 2 (Version: 10.6.10000.2.0)
Nero 10 Kwik Themes 3 (Version: 10.6.10000.1.0)
Nero 10 Kwik Themes 4 (Version: 10.6.10000.1.0)
Nero 10 Menu TemplatePack 1 (Version: 10.6.10000.0.0)
Nero 10 Menu TemplatePack 2 (Version: 10.6.10000.0.0)
Nero 10 Menu TemplatePack 3 (Version: 10.6.10000.1.0)
Nero 10 Menu TemplatePack Basic (Version: 10.6.10000.0.0)
Nero 10 Movie ThemePack Basic (Version: 10.6.10000.1.0)
Nero 10 PiP EffectPack 1 (Version: 10.6.10000.0.0)
Nero 10 Sample ImagePack (Version: 10.6.10000.11.0)
Nero 10 Sample Videos (Version: 10.6.10000.11.0)
Nero 10 Video TransitionPack 1 (Version: 10.6.10000.0.0)
Nero BackItUp 10 (Version: 5.8.10400.4.100)
Nero BackItUp 10 Help (CHM) (Version: 10.6.10600)
Nero Burning ROM 10 (Version: 10.6.10500.3.100)
Nero Burning ROM 10 (Version: 10.6.10600)
Nero BurningROM 10 Help (CHM) (Version: 10.6.10600)
Nero BurnRights 10 (Version: 4.4.10300.1.100)
Nero BurnRights 10 Help (CHM) (Version: 10.6.10600)
Nero Control Center 10 (Version: 10.6.12600.0.5)
Nero ControlCenter 10 Help (CHM) (Version: 10.6.10600)
Nero Core Components 10 (Version: 2.0.19800.9.10)
Nero CoverDesigner 10 (Version: 5.6.10500.3.100)
Nero CoverDesigner 10 Help (CHM) (Version: 10.6.10600)
Nero DiscSpeed 10 (Version: 6.4.10400.0.100)
Nero DiscSpeed 10 Help (CHM) (Version: 10.6.10600)
Nero Dolby Files 10 (Version: 2.0.13000.0.10)
Nero Express 10 (Version: 10.6.10600.4.100)
Nero Express 10 Help (CHM) (Version: 10.6.10600)
Nero InfoTool 10 (Version: 7.4.10200.0.100)
Nero InfoTool 10 Help (CHM) (Version: 10.6.10600)
Nero Kwik Media (Version: 1.6.14000.46.100)
Nero Multimedia Suite 10 Platinum HD (Version: 10.6.11800)
Nero Recode 10 (Version: 4.10.10600.4.100)
Nero Recode 10 Help (CHM) (Version: 10.6.10600)
Nero RescueAgent 10 (Version: 3.6.10500.3.100)
Nero RescueAgent 10 Help (CHM) (Version: 10.6.10700)
Nero SoundTrax 10 (Version: 4.10.10300.2.100)
Nero SoundTrax 10 Help (CHM) (Version: 10.6.10600)
Nero StartSmart 10 (Version: 10.6.10400.2.100)
Nero StartSmart 10 Help (CHM) (Version: 10.6.10600)
Nero Update (Version: 1.0.10900.31.0)
Nero Vision 10 (Version: 7.4.10800.7.100)
Nero Vision 10 Help (CHM) (Version: 10.6.10600)
Nero WaveEditor 10 (Version: 5.10.10400.3.100)
Nero WaveEditor 10 Help (CHM) (Version: 10.6.10600)
NeroKwikMedia Help (CHM) (Version: 10.6.10700)
nLite 1.4.9.1 (Version: 1.4.9.1)
Orca (Version: 3.1.3790.0000)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
Penguins! (Version: 2.2.0.95)
PerfectDisk 12.5 Professional (Version: 12.05.310)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Polar Bowler (Version: 2.2.0.95)
QuickTime (Version: 7.71.80.42)
Realtek Ethernet Controller Driver (Version: 7.38.113.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6289)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30126)
Realtek WLAN Driver (Version: 2.00.0013)
Reason 5.0 (Version: 5.0)
Recuva (Version: 1.44)
Redist (Version: 3.00.0000)
Remote Control USB Driver (Version: 2.3.2.317)
Rinse (uninstall)
RMPrepUSB
Room EQ Wizard V5
Skype Launcher (Version: 2.01)
Skype™ 5.10 (Version: 5.10.116)
SopCast 3.4.0 (Version: 3.4.0)
Synaptics Pointing Device Driver (Version: 15.2.11.1)
Tom Clancy's Splinter Cell (Version: 2.2.0.97)
Toshiba App Place (Version: 1.0.6.3)
TOSHIBA Application Installer (Version: 9.0.1.1)
TOSHIBA Assist (Version: 4.02.02)
Toshiba Book Place (Version: 2.2.7530)
TOSHIBA Bulletin Board (Version: 1.6.08.64)
TOSHIBA Disc Creator (Version: 2.1.0.6 for x64)
TOSHIBA eco Utility (Version: 1.3.3.64M)
TOSHIBA Face Recognition (Version: 3.1.8.64)
TOSHIBA Hardware Setup (Version: 2.00.0010)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.7)
TOSHIBA Media Controller (Version: 1.0.86.2)
TOSHIBA Media Controller Plug-in (Version: 1.0.6.1)
TOSHIBA Quality Application (Version: 1.0.3)
TOSHIBA Recovery Media Creator (Version: 2.1.3.5109)
TOSHIBA ReelTime (Version: 1.7.17.64)
TOSHIBA Resolution+ Plug-in for Windows Media Player (Version: 1.1.0)
TOSHIBA Service Station (Version: 2.2.9)
TOSHIBA Sleep Utility (Version: 1.4.2.7)
TOSHIBA Supervisor Password (Version: 2.00.0006)
TOSHIBA Value Added Package (Version: 1.5.4.64)
TOSHIBA Web Camera Application (Version: 2.0.0.13)
TOSHIBA Wireless LAN Indicator (Version: 1.0.2)
ToshibaRegistration (Version: 1.0.4)
TrueRTA
Tuner (Version: 1.00)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update Installer for WildTangent Games App
Verizon Media Manager (Version: 9.5.67)
Virtual MIDI Piano Keyboard (Version: 0.4.0)
VirtualCloneDrive
VisDir Free Disk Space Finder v 1.5 (Version: 1.5)
VLC media player 2.0.5 (Version: 2.0.5)
Vst To Rtas Adapter V2.11 (Version: "2.11")
Vuze (Version: 4.7)
Vuze Remote Toolbar (Version: 6.8.5.1)
Vz In Home Agent (Version: 7.03.32)
Vz In Home Agent (Version: 8.03.25)
Waves Complete VST RTAS TDM v7.1.16
Waves Mercury Bundle (Version: 5.0)
WildTangent Games (Version: 1.0.2.5)
WildTangent Games App (Toshiba Games) (Version: 4.0.4.16)
Windows Automated Installation Kit (Version: 2.0.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live Family Safety (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Zuma's Revenge (Version: 2.2.0.97)

========================= Memory info: ===================================

Percentage of memory in use: 17%
Total physical RAM: 6055.98 MB
Available physical RAM: 4966.03 MB
Total Pagefile: 7254.16 MB
Available Pagefile: 6165.71 MB
Total Virtual: 4095.88 MB
Available Virtual: 3979.52 MB

========================= Partitions: =====================================

1 Drive c: (TI106130W0F) (Fixed) (Total:180.27 GB) (Free:8.88 GB) NTFS
3 Drive f: (Back Up) (Fixed) (Total:200.2 GB) (Free:51.4 GB) NTFS
5 Drive h: (Stuff) (Fixed) (Total:731.31 GB) (Free:111.64 GB) NTFS
6 Drive z: (Data) (Fixed) (Total:414.43 GB) (Free:249.7 GB) NTFS

========================= Users: ========================================

User accounts for \\MARTIAND-PC

Administrator            Danny                    DB4D11256D3F41A9A176    
Devin                    Guest                    Marta                   

**** End of log ****

 



#7 Dannyboy100

Dannyboy100
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2013 - 01:28 PM

14:15:10.0026 2524  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
14:15:10.0400 2524  ============================================================
14:15:10.0400 2524  Current date / time: 2013/05/11 14:15:10.0400
14:15:10.0400 2524  SystemInfo:
14:15:10.0400 2524 
14:15:10.0400 2524  OS Version: 6.1.7601 ServicePack: 1.0
14:15:10.0400 2524  Product type: Workstation
14:15:10.0400 2524  ComputerName: MARTIAND-PC
14:15:10.0400 2524  UserName: Danny
14:15:10.0400 2524  Windows directory: C:\windows
14:15:10.0400 2524  System windows directory: C:\windows
14:15:10.0400 2524  Running under WOW64
14:15:10.0400 2524  Processor architecture: Intel x64
14:15:10.0400 2524  Number of processors: 4
14:15:10.0400 2524  Page size: 0x1000
14:15:10.0400 2524  Boot type: Safe boot with network
14:15:10.0400 2524  ============================================================
14:15:11.0165 2524  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:15:11.0165 2524  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:15:11.0555 2524  ============================================================
14:15:11.0555 2524  \Device\Harddisk0\DR0:
14:15:11.0555 2524  MBR partitions:
14:15:11.0555 2524  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1688A681
14:15:11.0555 2524  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x16B78E81, BlocksNum 0x33CDDE0F
14:15:11.0555 2524  \Device\Harddisk1\DR1:
14:15:11.0555 2524  MBR partitions:
14:15:11.0555 2524  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x19064000
14:15:11.0555 2524  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x19064800, BlocksNum 0x5B6A0000
14:15:11.0555 2524  ============================================================
14:15:11.0648 2524  C: <-> \Device\Harddisk0\DR0\Partition1
14:15:11.0679 2524  F: <-> \Device\Harddisk1\DR1\Partition1
14:15:11.0711 2524  Z: <-> \Device\Harddisk0\DR0\Partition2
14:15:11.0757 2524  H: <-> \Device\Harddisk1\DR1\Partition2
14:15:11.0757 2524  ============================================================
14:15:11.0757 2524  Initialize success
14:15:11.0757 2524  ============================================================
14:15:22.0709 2580  ============================================================
14:15:22.0709 2580  Scan started
14:15:22.0709 2580  Mode: Manual;
14:15:22.0709 2580  ============================================================
14:15:29.0276 2580  ================ Scan system memory ========================
14:15:29.0276 2580  System memory - ok
14:15:29.0276 2580  ================ Scan services =============================
14:15:29.0386 2580  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
14:15:29.0386 2580  1394ohci - ok
14:15:29.0432 2580  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
14:15:29.0432 2580  ACPI - ok
14:15:29.0448 2580  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
14:15:29.0448 2580  AcpiPmi - ok
14:15:29.0526 2580  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:15:29.0526 2580  AdobeARMservice - ok
14:15:29.0604 2580  [ 479901C99FA62D1C3261B7ACB1228DAD ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:15:29.0604 2580  AdobeFlashPlayerUpdateSvc - ok
14:15:29.0635 2580  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
14:15:29.0651 2580  adp94xx - ok
14:15:29.0666 2580  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
14:15:29.0666 2580  adpahci - ok
14:15:29.0713 2580  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
14:15:29.0729 2580  adpu320 - ok
14:15:29.0744 2580  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
14:15:29.0744 2580  AeLookupSvc - ok
14:15:29.0807 2580  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
14:15:29.0807 2580  AFD - ok
14:15:29.0838 2580  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
14:15:29.0838 2580  agp440 - ok
14:15:29.0869 2580  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
14:15:29.0885 2580  ALG - ok
14:15:29.0885 2580  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
14:15:29.0885 2580  aliide - ok
14:15:29.0916 2580  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
14:15:29.0916 2580  amdide - ok
14:15:29.0932 2580  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
14:15:29.0932 2580  AmdK8 - ok
14:15:29.0947 2580  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
14:15:29.0947 2580  AmdPPM - ok
14:15:29.0978 2580  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
14:15:29.0978 2580  amdsata - ok
14:15:29.0994 2580  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
14:15:30.0010 2580  amdsbs - ok
14:15:30.0010 2580  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
14:15:30.0010 2580  amdxata - ok
14:15:30.0025 2580  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
14:15:30.0025 2580  AppID - ok
14:15:30.0056 2580  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
14:15:30.0056 2580  AppIDSvc - ok
14:15:30.0072 2580  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\windows\System32\appinfo.dll
14:15:30.0072 2580  Appinfo - ok
14:15:30.0119 2580  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:15:30.0119 2580  Apple Mobile Device - ok
14:15:30.0134 2580  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
14:15:30.0134 2580  arc - ok
14:15:30.0181 2580  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
14:15:30.0181 2580  arcsas - ok
14:15:30.0197 2580  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
14:15:30.0197 2580  AsyncMac - ok
14:15:30.0197 2580  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
14:15:30.0212 2580  atapi - ok
14:15:30.0228 2580  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
14:15:30.0244 2580  AudioEndpointBuilder - ok
14:15:30.0259 2580  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
14:15:30.0259 2580  AudioSrv - ok
14:15:30.0290 2580  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
14:15:30.0290 2580  AxInstSV - ok
14:15:30.0322 2580  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
14:15:30.0337 2580  b06bdrv - ok
14:15:30.0353 2580  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
14:15:30.0353 2580  b57nd60a - ok
14:15:30.0384 2580  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
14:15:30.0384 2580  BDESVC - ok
14:15:30.0415 2580  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
14:15:30.0415 2580  Beep - ok
14:15:30.0478 2580  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
14:15:30.0493 2580  BFE - ok
14:15:30.0571 2580  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
14:15:30.0571 2580  blbdrive - ok
14:15:30.0649 2580  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:15:30.0649 2580  Bonjour Service - ok
14:15:30.0712 2580  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
14:15:30.0712 2580  bowser - ok
14:15:30.0743 2580  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
14:15:30.0743 2580  BrFiltLo - ok
14:15:30.0758 2580  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
14:15:30.0758 2580  BrFiltUp - ok
14:15:30.0805 2580  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
14:15:30.0805 2580  Browser - ok
14:15:30.0836 2580  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
14:15:30.0836 2580  Brserid - ok
14:15:30.0868 2580  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
14:15:30.0868 2580  BrSerWdm - ok
14:15:30.0868 2580  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
14:15:30.0883 2580  BrUsbMdm - ok
14:15:30.0883 2580  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
14:15:30.0899 2580  BrUsbSer - ok
14:15:30.0914 2580  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
14:15:30.0914 2580  BTHMODEM - ok
14:15:30.0946 2580  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
14:15:30.0946 2580  bthserv - ok
14:15:30.0946 2580  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
14:15:30.0946 2580  cdfs - ok
14:15:30.0977 2580  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
14:15:30.0977 2580  cdrom - ok
14:15:31.0008 2580  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
14:15:31.0008 2580  CertPropSvc - ok
14:15:31.0024 2580  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
14:15:31.0024 2580  circlass - ok
14:15:31.0086 2580  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
14:15:31.0086 2580  CLFS - ok
14:15:31.0148 2580  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:15:31.0180 2580  clr_optimization_v2.0.50727_32 - ok
14:15:31.0211 2580  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:15:31.0242 2580  clr_optimization_v2.0.50727_64 - ok
14:15:31.0289 2580  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:15:31.0304 2580  clr_optimization_v4.0.30319_32 - ok
14:15:31.0336 2580  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:15:31.0351 2580  clr_optimization_v4.0.30319_64 - ok
14:15:31.0382 2580  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
14:15:31.0382 2580  CmBatt - ok
14:15:31.0414 2580  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
14:15:31.0414 2580  cmdide - ok
14:15:31.0445 2580  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\windows\system32\Drivers\cng.sys
14:15:31.0445 2580  CNG - ok
14:15:31.0476 2580  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
14:15:31.0476 2580  Compbatt - ok
14:15:31.0492 2580  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
14:15:31.0492 2580  CompositeBus - ok
14:15:31.0492 2580  COMSysApp - ok
14:15:31.0538 2580  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
14:15:31.0538 2580  crcdisk - ok
14:15:31.0585 2580  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\windows\system32\cryptsvc.dll
14:15:31.0585 2580  CryptSvc - ok
14:15:31.0601 2580  [ 44BDDEB03C84A1C993C992FFB5700357 ] CVirtA          C:\windows\system32\DRIVERS\CVirtA64.sys
14:15:31.0601 2580  CVirtA - ok
14:15:31.0616 2580  [ 20B51198DF64DD6CED07BE75ABC4DF93 ] dalwdmservice   C:\windows\system32\drivers\dalwdm.sys
14:15:31.0632 2580  dalwdmservice - ok
14:15:31.0663 2580  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
14:15:31.0741 2580  DcomLaunch - ok
14:15:31.0804 2580  [ 6EBCE114DD13E4D9CBFD520D4F4BBDA4 ] DefragFS        C:\windows\system32\drivers\DefragFS.sys
14:15:31.0804 2580  DefragFS - ok
14:15:31.0850 2580  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] DEFRAGSVC       C:\windows\System32\defragsvc.dll
14:15:31.0850 2580  DEFRAGSVC - ok
14:15:31.0897 2580  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
14:15:31.0897 2580  DfsC - ok
14:15:31.0913 2580  [ 18FE76610C8AB90340D3BDDB4F48BD49 ] DGUSBAP         C:\windows\system32\DRIVERS\dgmbx2.sys
14:15:31.0928 2580  DGUSBAP - ok
14:15:31.0975 2580  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
14:15:31.0975 2580  Dhcp - ok
14:15:32.0022 2580  [ FAA97C2E28A2A7AFBB156B78FF30F710 ] DigiNet         C:\windows\system32\DRIVERS\diginet.sys
14:15:32.0022 2580  DigiNet - ok
14:15:32.0053 2580  DigiRefresh - ok
14:15:32.0100 2580  [ BC14A2EB17BECECE3BD3BB37F2AE682C ] digiSPTIService C:\Program Files (x86)\Digidesign\Pro Tools\digiSPTIService.exe
14:15:32.0100 2580  digiSPTIService - ok
14:15:32.0131 2580  DirectNT - ok
14:15:32.0147 2580  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
14:15:32.0147 2580  discache - ok
14:15:32.0162 2580  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
14:15:32.0162 2580  Disk - ok
14:15:32.0194 2580  [ 05CB5910B3CA6019FC3CCA815EE06FFB ] DNE             C:\windows\system32\DRIVERS\dne64x.sys
14:15:32.0194 2580  DNE - ok
14:15:32.0209 2580  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
14:15:32.0209 2580  Dnscache - ok
14:15:32.0240 2580  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
14:15:32.0240 2580  dot3svc - ok
14:15:32.0256 2580  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
14:15:32.0256 2580  DPS - ok
14:15:32.0287 2580  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
14:15:32.0287 2580  drmkaud - ok
14:15:32.0318 2580  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
14:15:32.0334 2580  DXGKrnl - ok
14:15:32.0381 2580  [ ACA3FE4F18A945B7BF2618A79F6F670B ] eamonm          C:\windows\system32\DRIVERS\eamonm.sys
14:15:32.0381 2580  eamonm - ok
14:15:32.0428 2580  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
14:15:32.0428 2580  EapHost - ok
14:15:32.0490 2580  [ EC7819B90EE202BDC5A5059CF6CB6FAA ] EaseUS Agent    C:\Program Files (x86)\EASEUS\Todo Backup2\bin\Agent.exe
14:15:32.0490 2580  EaseUS Agent - ok
14:15:32.0568 2580  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
14:15:32.0646 2580  ebdrv - ok
14:15:32.0724 2580  efavdrv - ok
14:15:32.0755 2580  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
14:15:32.0755 2580  EFS - ok
14:15:32.0833 2580  [ 6672438BDCBFD87250D22112D458294D ] ehdrv           C:\windows\system32\DRIVERS\ehdrv.sys
14:15:32.0849 2580  ehdrv - ok
14:15:32.0880 2580  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
14:15:32.0911 2580  ehRecvr - ok
14:15:32.0911 2580  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
14:15:32.0911 2580  ehSched - ok
14:15:32.0989 2580  [ DEB2B067745D92FF17A5068DFD2360BC ] EhttpSrv        C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
14:15:33.0005 2580  EhttpSrv - ok
14:15:33.0067 2580  [ 191D8ECCC40F05B52FAC0513F35BA01D ] ekrn            C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
14:15:33.0067 2580  ekrn - ok
14:15:33.0098 2580  [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO        C:\windows\system32\Drivers\ElbyCDIO.sys
14:15:33.0098 2580  ElbyCDIO - ok
14:15:33.0130 2580  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
14:15:33.0145 2580  elxstor - ok
14:15:33.0176 2580  [ 443805B5B11C859AC8CA35297648FF0C ] epfw            C:\windows\system32\DRIVERS\epfw.sys
14:15:33.0176 2580  epfw - ok
14:15:33.0208 2580  [ 66E61BC6C9F519A99275EB0F0E530BF4 ] Epfwndis        C:\windows\system32\DRIVERS\Epfwndis.sys
14:15:33.0208 2580  Epfwndis - ok
14:15:33.0254 2580  [ F72C97F3D34EA5EC919C73E3901266BB ] epfwwfp         C:\windows\system32\DRIVERS\epfwwfp.sys
14:15:33.0254 2580  epfwwfp - ok
14:15:33.0286 2580  [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv        C:\windows\system32\epmntdrv.sys
14:15:33.0286 2580  epmntdrv - ok
14:15:33.0301 2580  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
14:15:33.0301 2580  ErrDev - ok
14:15:33.0348 2580  [ 09A6390583C629532407CA7AF026FF91 ] EUBAKUP         C:\windows\system32\drivers\eubakup.sys
14:15:33.0364 2580  EUBAKUP - ok
14:15:33.0395 2580  [ 29F22C20748E3696AF0D57DC71CC6A10 ] EUBKMON         C:\windows\system32\drivers\EUBKMON.sys
14:15:33.0395 2580  EUBKMON - ok
14:15:33.0410 2580  [ 97CD68DB973DE9C17BE205DD2DE21563 ] EUDISK          C:\windows\system32\drivers\eudisk.sys
14:15:33.0410 2580  EUDISK - ok
14:15:33.0426 2580  [ 449070112444B188CF755ADD0627CD00 ] EUDSKACS        C:\windows\system32\drivers\eudskacs.sys
14:15:33.0426 2580  EUDSKACS - ok
14:15:33.0442 2580  [ 1B55D6F38343904F0D26A5B0744B6BD8 ] EUFDDISK        C:\windows\system32\drivers\EuFdDisk.sys
14:15:33.0457 2580  EUFDDISK - ok
14:15:33.0457 2580  [ 6791502D2E6CB3CA67E43FE003E29E0A ] EUFS            C:\windows\system32\drivers\eufs.sys
14:15:33.0457 2580  EUFS - ok
14:15:33.0520 2580  [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv        C:\windows\system32\EuGdiDrv.sys
14:15:33.0520 2580  EuGdiDrv - ok
14:15:33.0551 2580  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
14:15:33.0566 2580  EventSystem - ok
14:15:33.0582 2580  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
14:15:33.0582 2580  exfat - ok
14:15:33.0613 2580  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
14:15:33.0613 2580  fastfat - ok
14:15:33.0644 2580  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
14:15:33.0660 2580  Fax - ok
14:15:33.0676 2580  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
14:15:33.0691 2580  fdc - ok
14:15:33.0738 2580  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
14:15:33.0754 2580  fdPHost - ok
14:15:33.0769 2580  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
14:15:33.0769 2580  FDResPub - ok
14:15:33.0785 2580  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
14:15:33.0785 2580  FileInfo - ok
14:15:33.0832 2580  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
14:15:33.0832 2580  Filetrace - ok
14:15:33.0847 2580  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
14:15:33.0847 2580  flpydisk - ok
14:15:33.0863 2580  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
14:15:33.0863 2580  FltMgr - ok
14:15:33.0925 2580  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
14:15:33.0941 2580  FontCache - ok
14:15:34.0003 2580  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:15:34.0003 2580  FontCache3.0.0.0 - ok
14:15:34.0019 2580  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
14:15:34.0019 2580  FsDepends - ok
14:15:34.0066 2580  [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr         C:\windows\system32\DRIVERS\fssfltr.sys
14:15:34.0066 2580  fssfltr - ok
14:15:34.0128 2580  [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
14:15:34.0144 2580  fsssvc - ok
14:15:34.0190 2580  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
14:15:34.0190 2580  Fs_Rec - ok
14:15:34.0222 2580  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
14:15:34.0222 2580  fvevol - ok
14:15:34.0237 2580  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
14:15:34.0237 2580  gagp30kx - ok
14:15:34.0284 2580  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
14:15:34.0300 2580  GamesAppService - ok
14:15:34.0331 2580  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
14:15:34.0331 2580  GEARAspiWDM - ok
14:15:34.0346 2580  [ FA07EC01952729DDDDC5BF4BAE06B09E ] GFNEXSrv        C:\Windows\System32\GFNEXSrv.exe
14:15:34.0362 2580  GFNEXSrv - ok
14:15:34.0378 2580  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
14:15:34.0393 2580  gpsvc - ok
14:15:34.0456 2580  [ A09BD5E75C4BDACA295F9F1D9C5DFE38 ] Guard Agent     C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe
14:15:34.0456 2580  Guard Agent - ok
14:15:34.0487 2580  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
14:15:34.0487 2580  hcw85cir - ok
14:15:34.0502 2580  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
14:15:34.0502 2580  HdAudAddService - ok
14:15:34.0534 2580  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
14:15:34.0534 2580  HDAudBus - ok
14:15:34.0549 2580  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
14:15:34.0549 2580  HidBatt - ok
14:15:34.0565 2580  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
14:15:34.0565 2580  HidBth - ok
14:15:34.0580 2580  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
14:15:34.0580 2580  HidIr - ok
14:15:34.0612 2580  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
14:15:34.0612 2580  hidserv - ok
14:15:34.0627 2580  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
14:15:34.0627 2580  HidUsb - ok
14:15:34.0643 2580  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
14:15:34.0643 2580  hkmsvc - ok
14:15:34.0658 2580  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
14:15:34.0658 2580  HomeGroupListener - ok
14:15:34.0674 2580  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
14:15:34.0674 2580  HomeGroupProvider - ok
14:15:34.0690 2580  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
14:15:34.0690 2580  HpSAMD - ok
14:15:34.0721 2580  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
14:15:34.0721 2580  HTTP - ok
14:15:34.0736 2580  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
14:15:34.0736 2580  hwpolicy - ok
14:15:34.0752 2580  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
14:15:34.0752 2580  i8042prt - ok
14:15:34.0783 2580  [ D469B77687E12FE43E344806740B624D ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
14:15:34.0783 2580  iaStor - ok
14:15:34.0799 2580  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
14:15:34.0814 2580  iaStorV - ok
14:15:34.0892 2580  [ DAF66902F08796F9C694901660E5A64A ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
14:15:34.0892 2580  IDriverT - ok
14:15:34.0970 2580  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:15:34.0986 2580  idsvc - ok
14:15:35.0220 2580  [ 370C2A8629B30F910F740387795DDC6F ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
14:15:35.0423 2580  igfx - ok
14:15:35.0485 2580  [ 2889B2FA2487B848B59A031755E2A618 ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
14:15:35.0485 2580  IHA_MessageCenter - ok
14:15:35.0501 2580  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
14:15:35.0501 2580  iirsp - ok
14:15:35.0548 2580  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
14:15:35.0548 2580  IKEEXT - ok
14:15:35.0626 2580  [ 16C324E22208E6E8336C3F2DA14CFE2D ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
14:15:35.0672 2580  IntcAzAudAddService - ok
14:15:35.0719 2580  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
14:15:35.0719 2580  IntcDAud - ok
14:15:35.0750 2580  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
14:15:35.0750 2580  intelide - ok
14:15:35.0766 2580  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
14:15:35.0766 2580  intelppm - ok
14:15:35.0813 2580  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
14:15:35.0813 2580  IPBusEnum - ok
14:15:35.0844 2580  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
14:15:35.0844 2580  IpFilterDriver - ok
14:15:35.0860 2580  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
14:15:35.0860 2580  IPMIDRV - ok
14:15:35.0875 2580  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
14:15:35.0875 2580  IPNAT - ok
14:15:35.0922 2580  [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:15:35.0938 2580  iPod Service - ok
14:15:35.0953 2580  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
14:15:35.0953 2580  IRENUM - ok
14:15:35.0969 2580  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
14:15:35.0969 2580  isapnp - ok
14:15:36.0000 2580  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\DRIVERS\msiscsi.sys
14:15:36.0000 2580  iScsiPrt - ok
14:15:36.0016 2580  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
14:15:36.0016 2580  kbdclass - ok
14:15:36.0047 2580  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
14:15:36.0047 2580  kbdhid - ok
14:15:36.0078 2580  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
14:15:36.0078 2580  KeyIso - ok
14:15:36.0109 2580  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
14:15:36.0125 2580  KSecDD - ok
14:15:36.0156 2580  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
14:15:36.0156 2580  KSecPkg - ok
14:15:36.0172 2580  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
14:15:36.0172 2580  ksthunk - ok
14:15:36.0203 2580  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
14:15:36.0203 2580  KtmRm - ok
14:15:36.0250 2580  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\system32\srvsvc.dll
14:15:36.0265 2580  LanmanServer - ok
14:15:36.0281 2580  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
14:15:36.0296 2580  LanmanWorkstation - ok
14:15:36.0312 2580  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
14:15:36.0312 2580  lltdio - ok
14:15:36.0343 2580  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
14:15:36.0343 2580  lltdsvc - ok
14:15:36.0359 2580  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
14:15:36.0359 2580  lmhosts - ok
14:15:36.0406 2580  [ 7F32D4C47A50E7223491E8FB9359907D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:15:36.0406 2580  LMS - ok
14:15:36.0437 2580  [ 37EFB026E1A8A79FBE7044A241281B3E ] LoopBeMidi1     C:\windows\system32\drivers\loopbe1.sys
14:15:36.0437 2580  LoopBeMidi1 - ok
14:15:36.0468 2580  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
14:15:36.0468 2580  LSI_FC - ok
14:15:36.0484 2580  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
14:15:36.0484 2580  LSI_SAS - ok
14:15:36.0499 2580  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
14:15:36.0499 2580  LSI_SAS2 - ok
14:15:36.0515 2580  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
14:15:36.0530 2580  LSI_SCSI - ok
14:15:36.0546 2580  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
14:15:36.0546 2580  luafv - ok
14:15:36.0608 2580  [ 61E67854128C13FBEA71C7FAC3B822C9 ] MboxAudioDevMon C:\Program Files (x86)\Avid\Mbox\AudioDevMon.exe
14:15:36.0640 2580  MboxAudioDevMon - ok
14:15:36.0686 2580  [ F53519F56E9BC133753D444B930775DA ] MboxMiniAudioDevMon C:\Program Files (x86)\Avid\Mbox Mini\AudioDevMon.exe
14:15:36.0702 2580  MboxMiniAudioDevMon - ok
14:15:36.0764 2580  [ B4A6BCEC84AC9C1AADEDB24E2FE531D8 ] MboxProAudioDevMon C:\Program Files (x86)\Avid\Mbox Pro\AudioDevMon.exe
14:15:36.0796 2580  MboxProAudioDevMon - ok
14:15:36.0811 2580  [ AB817DDC828CE19A7114383B5F28F4CC ] MBX2DFU         C:\windows\system32\DRIVERS\dgmbx2fu.sys
14:15:36.0811 2580  MBX2DFU - ok
14:15:36.0842 2580  [ A8E67055E039356F81C29D25357F22F2 ] MBX2MIDK        C:\windows\system32\drivers\mbx2midk.sys
14:15:36.0842 2580  MBX2MIDK - ok
14:15:36.0874 2580  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
14:15:36.0889 2580  Mcx2Svc - ok
14:15:36.0905 2580  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
14:15:36.0905 2580  megasas - ok
14:15:36.0920 2580  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
14:15:36.0936 2580  MegaSR - ok
14:15:36.0967 2580  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
14:15:36.0967 2580  MEIx64 - ok
14:15:37.0014 2580  Microsoft SharePoint Workspace Audit Service - ok
14:15:37.0045 2580  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
14:15:37.0045 2580  MMCSS - ok
14:15:37.0076 2580  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
14:15:37.0076 2580  Modem - ok
14:15:37.0092 2580  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
14:15:37.0092 2580  monitor - ok
14:15:37.0154 2580  [ 9DFD34E6841C460B5D992A1C5327AE69 ] MotoHelper      C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
14:15:37.0154 2580  MotoHelper - ok
14:15:37.0186 2580  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
14:15:37.0186 2580  mouclass - ok
14:15:37.0201 2580  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\drivers\mouhid.sys
14:15:37.0201 2580  mouhid - ok
14:15:37.0217 2580  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
14:15:37.0217 2580  mountmgr - ok
14:15:37.0232 2580  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
14:15:37.0232 2580  mpio - ok
14:15:37.0264 2580  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
14:15:37.0264 2580  mpsdrv - ok
14:15:37.0310 2580  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
14:15:37.0310 2580  MRxDAV - ok
14:15:37.0310 2580  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
14:15:37.0326 2580  mrxsmb - ok
14:15:37.0342 2580  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
14:15:37.0342 2580  mrxsmb10 - ok
14:15:37.0373 2580  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
14:15:37.0373 2580  mrxsmb20 - ok
14:15:37.0420 2580  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\DRIVERS\msahci.sys
14:15:37.0420 2580  msahci - ok
14:15:37.0435 2580  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
14:15:37.0435 2580  msdsm - ok
14:15:37.0466 2580  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
14:15:37.0466 2580  MSDTC - ok
14:15:37.0513 2580  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
14:15:37.0513 2580  Msfs - ok
14:15:37.0560 2580  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
14:15:37.0560 2580  mshidkmdf - ok
14:15:37.0576 2580  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
14:15:37.0576 2580  msisadrv - ok
14:15:37.0607 2580  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
14:15:37.0607 2580  MSiSCSI - ok
14:15:37.0622 2580  msiserver - ok
14:15:37.0654 2580  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
14:15:37.0654 2580  MSKSSRV - ok
14:15:37.0685 2580  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
14:15:37.0685 2580  MSPCLOCK - ok
14:15:37.0700 2580  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
14:15:37.0716 2580  MSPQM - ok
14:15:37.0763 2580  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
14:15:37.0763 2580  MsRPC - ok
14:15:37.0778 2580  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
14:15:37.0778 2580  mssmbios - ok
14:15:37.0794 2580  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
14:15:37.0794 2580  MSTEE - ok
14:15:37.0810 2580  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
14:15:37.0825 2580  MTConfig - ok
14:15:37.0872 2580  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
14:15:37.0872 2580  Mup - ok
14:15:37.0903 2580  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
14:15:37.0903 2580  napagent - ok
14:15:37.0934 2580  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
14:15:37.0934 2580  NativeWifiP - ok
14:15:37.0997 2580  [ 13AA2130F2A104DD775EAD0F0EE5417B ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
14:15:38.0012 2580  NAUpdate - ok
14:15:38.0059 2580  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
14:15:38.0059 2580  NDIS - ok
14:15:38.0090 2580  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
14:15:38.0090 2580  NdisCap - ok
14:15:38.0122 2580  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
14:15:38.0122 2580  NdisTapi - ok
14:15:38.0168 2580  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
14:15:38.0168 2580  Ndisuio - ok
14:15:38.0200 2580  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
14:15:38.0200 2580  NdisWan - ok
14:15:38.0231 2580  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
14:15:38.0246 2580  NDProxy - ok
14:15:38.0278 2580  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
14:15:38.0278 2580  NetBIOS - ok
14:15:38.0309 2580  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
14:15:38.0309 2580  NetBT - ok
14:15:38.0309 2580  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
14:15:38.0309 2580  Netlogon - ok
14:15:38.0340 2580  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
14:15:38.0340 2580  Netman - ok
14:15:38.0356 2580  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
14:15:38.0356 2580  netprofm - ok
14:15:38.0387 2580  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:15:38.0387 2580  NetTcpPortSharing - ok
14:15:38.0402 2580  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
14:15:38.0434 2580  nfrd960 - ok
14:15:38.0590 2580  [ 503C365AA11A0E42A110A6C20632A1E8 ] NIHardwareService C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
14:15:38.0683 2580  NIHardwareService - ok
14:15:38.0714 2580  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
14:15:38.0714 2580  NlaSvc - ok
14:15:38.0761 2580  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
14:15:38.0761 2580  Npfs - ok
14:15:38.0792 2580  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
14:15:38.0792 2580  nsi - ok
14:15:38.0808 2580  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
14:15:38.0808 2580  nsiproxy - ok
14:15:38.0855 2580  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
14:15:38.0870 2580  Ntfs - ok
14:15:38.0917 2580  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
14:15:38.0917 2580  Null - ok
14:15:38.0948 2580  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
14:15:38.0948 2580  nvraid - ok
14:15:38.0964 2580  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
14:15:38.0964 2580  nvstor - ok
14:15:38.0980 2580  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
14:15:38.0980 2580  nv_agp - ok
14:15:39.0011 2580  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
14:15:39.0011 2580  ohci1394 - ok
14:15:39.0042 2580  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:15:39.0058 2580  ose - ok
14:15:39.0182 2580  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:15:39.0292 2580  osppsvc - ok
14:15:39.0323 2580  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
14:15:39.0338 2580  p2pimsvc - ok
14:15:39.0370 2580  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
14:15:39.0401 2580  p2psvc - ok
14:15:39.0416 2580  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
14:15:39.0416 2580  Parport - ok
14:15:39.0448 2580  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
14:15:39.0448 2580  partmgr - ok
14:15:39.0479 2580  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
14:15:39.0479 2580  PcaSvc - ok
14:15:39.0494 2580  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
14:15:39.0494 2580  pci - ok
14:15:39.0510 2580  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\DRIVERS\pciide.sys
14:15:39.0510 2580  pciide - ok
14:15:39.0541 2580  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
14:15:39.0541 2580  pcmcia - ok
14:15:39.0557 2580  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
14:15:39.0557 2580  pcw - ok
14:15:39.0635 2580  [ 359AB5198077235475A203E15E1C6FC8 ] PDAgent         C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
14:15:39.0650 2580  PDAgent - ok
14:15:39.0760 2580  [ 48E432C8CFC70B2EAD9A09593A2D5B14 ] PDEngine        C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe
14:15:39.0838 2580  PDEngine - ok
14:15:39.0869 2580  [ 2EF8A0B4F7FD501FA74E828B0AD1D9D1 ] PDFSfilter      C:\windows\system32\DRIVERS\PDFsFilter.sys
14:15:39.0869 2580  PDFSfilter - ok
14:15:39.0900 2580  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
14:15:39.0916 2580  PEAUTH - ok
14:15:40.0009 2580  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
14:15:40.0165 2580  PerfHost - ok
14:15:40.0196 2580  [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
14:15:40.0196 2580  PGEffect - ok
14:15:40.0228 2580  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
14:15:40.0243 2580  pla - ok
14:15:40.0306 2580  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
14:15:40.0306 2580  PlugPlay - ok
14:15:40.0321 2580  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
14:15:40.0321 2580  PNRPAutoReg - ok
14:15:40.0352 2580  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
14:15:40.0352 2580  PNRPsvc - ok
14:15:40.0368 2580  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
14:15:40.0384 2580  PolicyAgent - ok
14:15:40.0415 2580  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
14:15:40.0415 2580  Power - ok
14:15:40.0446 2580  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
14:15:40.0446 2580  PptpMiniport - ok
14:15:40.0462 2580  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
14:15:40.0462 2580  Processor - ok
14:15:40.0477 2580  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
14:15:40.0477 2580  ProfSvc - ok
14:15:40.0493 2580  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
14:15:40.0493 2580  ProtectedStorage - ok
14:15:40.0524 2580  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
14:15:40.0524 2580  Psched - ok
14:15:40.0555 2580  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
14:15:40.0571 2580  ql2300 - ok
14:15:40.0602 2580  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
14:15:40.0602 2580  ql40xx - ok
14:15:40.0633 2580  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
14:15:40.0649 2580  QWAVE - ok
14:15:40.0664 2580  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
14:15:40.0664 2580  QWAVEdrv - ok
14:15:40.0680 2580  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
14:15:40.0680 2580  RasAcd - ok
14:15:40.0680 2580  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
14:15:40.0680 2580  RasAgileVpn - ok
14:15:40.0711 2580  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
14:15:40.0727 2580  RasAuto - ok
14:15:40.0742 2580  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
14:15:40.0742 2580  Rasl2tp - ok
14:15:40.0758 2580  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
14:15:40.0758 2580  RasMan - ok
14:15:40.0774 2580  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
14:15:40.0774 2580  RasPppoe - ok
14:15:40.0789 2580  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
14:15:40.0805 2580  RasSstp - ok
14:15:40.0820 2580  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
14:15:40.0820 2580  rdbss - ok
14:15:40.0836 2580  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
14:15:40.0836 2580  rdpbus - ok
14:15:40.0852 2580  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
14:15:40.0852 2580  RDPCDD - ok
14:15:40.0898 2580  [ BDF2DB2F19945AFAF102A2C03062EFB1 ] RDPDISPM        C:\windows\system32\DRIVERS\rdpdispm.sys
14:15:40.0914 2580  RDPDISPM - ok
14:15:40.0930 2580  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
14:15:40.0930 2580  RDPENCDD - ok
14:15:40.0945 2580  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
14:15:40.0945 2580  RDPREFMP - ok
14:15:41.0008 2580  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
14:15:41.0023 2580  RdpVideoMiniport - ok
14:15:41.0070 2580  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
14:15:41.0086 2580  RDPWD - ok
14:15:41.0117 2580  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
14:15:41.0117 2580  rdyboost - ok
14:15:41.0164 2580  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
14:15:41.0179 2580  RemoteAccess - ok
14:15:41.0195 2580  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
14:15:41.0195 2580  RemoteRegistry - ok
14:15:41.0210 2580  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
14:15:41.0210 2580  RpcEptMapper - ok
14:15:41.0242 2580  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
14:15:41.0242 2580  RpcLocator - ok
14:15:41.0273 2580  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
14:15:41.0273 2580  RpcSs - ok
14:15:41.0304 2580  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
14:15:41.0304 2580  rspndr - ok
14:15:41.0320 2580  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
14:15:41.0320 2580  RSUSBSTOR - ok
14:15:41.0351 2580  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
14:15:41.0366 2580  RTL8167 - ok
14:15:41.0398 2580  [ 290391983533A4C003986C7C51C01023 ] RTL8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
14:15:41.0413 2580  RTL8192Ce - ok
14:15:41.0429 2580  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
14:15:41.0429 2580  SamSs - ok
14:15:41.0460 2580  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
14:15:41.0460 2580  sbp2port - ok
14:15:41.0491 2580  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
14:15:41.0491 2580  SCardSvr - ok
14:15:41.0507 2580  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
14:15:41.0507 2580  scfilter - ok
14:15:41.0522 2580  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
14:15:41.0554 2580  Schedule - ok
14:15:41.0569 2580  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
14:15:41.0569 2580  SCPolicySvc - ok
14:15:41.0600 2580  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
14:15:41.0600 2580  SDRSVC - ok
14:15:41.0647 2580  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
14:15:41.0647 2580  secdrv - ok
14:15:41.0663 2580  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
14:15:41.0663 2580  seclogon - ok
14:15:41.0678 2580  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
14:15:41.0678 2580  SENS - ok
14:15:41.0694 2580  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
14:15:41.0710 2580  SensrSvc - ok
14:15:41.0741 2580  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
14:15:41.0741 2580  Serenum - ok
14:15:41.0756 2580  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
14:15:41.0756 2580  Serial - ok
14:15:41.0772 2580  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
14:15:41.0788 2580  sermouse - ok
14:15:41.0819 2580  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
14:15:41.0819 2580  SessionEnv - ok
14:15:41.0834 2580  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
14:15:41.0834 2580  sffdisk - ok
14:15:41.0850 2580  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
14:15:41.0850 2580  sffp_mmc - ok
14:15:41.0866 2580  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
14:15:41.0866 2580  sffp_sd - ok
14:15:41.0866 2580  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
14:15:41.0866 2580  sfloppy - ok
14:15:41.0944 2580  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
14:15:41.0944 2580  ShellHWDetection - ok
14:15:41.0975 2580  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
14:15:41.0990 2580  SiSRaid2 - ok
14:15:42.0022 2580  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
14:15:42.0053 2580  SiSRaid4 - ok
14:15:42.0100 2580  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:15:42.0100 2580  SkypeUpdate - ok
14:15:42.0115 2580  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
14:15:42.0115 2580  Smb - ok
14:15:42.0162 2580  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
14:15:42.0193 2580  SNMPTRAP - ok
14:15:42.0224 2580  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
14:15:42.0224 2580  spldr - ok
14:15:42.0256 2580  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
14:15:42.0271 2580  Spooler - ok
14:15:42.0349 2580  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
14:15:42.0412 2580  sppsvc - ok
14:15:42.0443 2580  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
14:15:42.0443 2580  sppuinotify - ok
14:15:42.0490 2580  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
14:15:42.0505 2580  srv - ok
14:15:42.0505 2580  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
14:15:42.0505 2580  srv2 - ok
14:15:42.0536 2580  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
14:15:42.0552 2580  srvnet - ok
14:15:42.0583 2580  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
14:15:42.0583 2580  SSDPSRV - ok
14:15:42.0599 2580  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
14:15:42.0599 2580  SstpSvc - ok
14:15:42.0630 2580  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
14:15:42.0646 2580  stexstor - ok
14:15:42.0692 2580  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
14:15:42.0708 2580  stisvc - ok
14:15:42.0708 2580  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
14:15:42.0708 2580  swenum - ok
14:15:42.0739 2580  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
14:15:42.0755 2580  swprv - ok
14:15:42.0817 2580  [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
14:15:42.0895 2580  SynTP - ok
14:15:42.0958 2580  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
14:15:42.0973 2580  SysMain - ok
14:15:42.0989 2580  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
14:15:43.0004 2580  TabletInputService - ok
14:15:43.0036 2580  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
14:15:43.0036 2580  TapiSrv - ok
14:15:43.0051 2580  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
14:15:43.0051 2580  TBS - ok
14:15:43.0114 2580  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
14:15:43.0129 2580  Tcpip - ok
14:15:43.0192 2580  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
14:15:43.0207 2580  TCPIP6 - ok
14:15:43.0238 2580  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
14:15:43.0238 2580  tcpipreg - ok
14:15:43.0270 2580  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
14:15:43.0270 2580  tdcmdpst - ok
14:15:43.0285 2580  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
14:15:43.0285 2580  TDPIPE - ok
14:15:43.0332 2580  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
14:15:43.0332 2580  TDTCP - ok
14:15:43.0348 2580  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
14:15:43.0348 2580  tdx - ok
14:15:43.0379 2580  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
14:15:43.0379 2580  TermDD - ok
14:15:43.0410 2580  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
14:15:43.0426 2580  TermService - ok
14:15:43.0457 2580  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
14:15:43.0457 2580  Themes - ok
14:15:43.0457 2580  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
14:15:43.0457 2580  THREADORDER - ok
14:15:43.0535 2580  [ F120967184A27E927052E8DDBB727851 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
14:15:43.0550 2580  TMachInfo - ok
14:15:43.0582 2580  [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv         C:\windows\system32\TODDSrv.exe
14:15:43.0597 2580  TODDSrv - ok
14:15:43.0660 2580  [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
14:15:43.0675 2580  TosCoSrv - ok
14:15:43.0722 2580  [ 9B6BC7A3F2EC174C3FB917B4B6F87AFD ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
14:15:43.0722 2580  TOSHIBA eco Utility Service - ok
14:15:43.0753 2580  [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
14:15:43.0753 2580  TOSHIBA HDD SSD Alert Service - ok
14:15:43.0784 2580  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\windows\system32\DRIVERS\tos_sps64.sys
14:15:43.0800 2580  tos_sps64 - ok
14:15:43.0831 2580  [ FF12358B7070A62319280A9192A24AA2 ] Tpkd            C:\windows\system32\drivers\Tpkd.sys
14:15:43.0831 2580  Tpkd - ok
14:15:43.0847 2580  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
14:15:43.0847 2580  TrkWks - ok
14:15:43.0878 2580  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
14:15:43.0909 2580  TrustedInstaller - ok
14:15:43.0940 2580  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
14:15:43.0940 2580  tssecsrv - ok
14:15:43.0956 2580  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
14:15:43.0972 2580  TsUsbFlt - ok
14:15:44.0018 2580  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
14:15:44.0034 2580  TsUsbGD - ok
14:15:44.0065 2580  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
14:15:44.0065 2580  tunnel - ok
14:15:44.0112 2580  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
14:15:44.0112 2580  TVALZ - ok
14:15:44.0143 2580  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
14:15:44.0143 2580  uagp35 - ok
14:15:44.0159 2580  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
14:15:44.0174 2580  udfs - ok
14:15:44.0221 2580  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
14:15:44.0221 2580  UI0Detect - ok
14:15:44.0252 2580  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
14:15:44.0252 2580  uliagpkx - ok
14:15:44.0252 2580  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
14:15:44.0268 2580  umbus - ok
14:15:44.0284 2580  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\drivers\umpass.sys
14:15:44.0284 2580  UmPass - ok
14:15:44.0377 2580  [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:15:44.0440 2580  UNS - ok
14:15:44.0471 2580  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
14:15:44.0471 2580  upnphost - ok
14:15:44.0502 2580  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
14:15:44.0502 2580  USBAAPL64 - ok
14:15:44.0533 2580  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\windows\system32\drivers\usbaudio.sys
14:15:44.0533 2580  usbaudio - ok
14:15:44.0549 2580  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
14:15:44.0564 2580  usbccgp - ok
14:15:44.0580 2580  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
14:15:44.0580 2580  usbcir - ok
14:15:44.0611 2580  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\drivers\usbehci.sys
14:15:44.0611 2580  usbehci - ok
14:15:44.0642 2580  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
14:15:44.0642 2580  usbhub - ok
14:15:44.0658 2580  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
14:15:44.0658 2580  usbohci - ok
14:15:44.0689 2580  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
14:15:44.0689 2580  usbprint - ok
14:15:44.0720 2580  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
14:15:44.0720 2580  USBSTOR - ok
14:15:44.0736 2580  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
14:15:44.0736 2580  usbuhci - ok
14:15:44.0783 2580  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
14:15:44.0783 2580  usbvideo - ok
14:15:44.0814 2580  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
14:15:44.0814 2580  UxSms - ok
14:15:44.0814 2580  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
14:15:44.0814 2580  VaultSvc - ok
14:15:44.0845 2580  [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone          C:\windows\system32\DRIVERS\VClone.sys
14:15:44.0845 2580  VClone - ok
14:15:44.0861 2580  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
14:15:44.0861 2580  vdrvroot - ok
14:15:44.0892 2580  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
14:15:44.0892 2580  vds - ok
14:15:44.0908 2580  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
14:15:44.0923 2580  vga - ok
14:15:44.0939 2580  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
14:15:44.0954 2580  VgaSave - ok
14:15:44.0954 2580  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
14:15:44.0954 2580  vhdmp - ok
14:15:45.0001 2580  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
14:15:45.0001 2580  viaide - ok
14:15:45.0001 2580  VMnetAdapter - ok
14:15:45.0017 2580  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
14:15:45.0032 2580  volmgr - ok
14:15:45.0048 2580  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
14:15:45.0064 2580  volmgrx - ok
14:15:45.0095 2580  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\windows\system32\drivers\volsnap.sys
14:15:45.0110 2580  volsnap - ok
14:15:45.0157 2580  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
14:15:45.0157 2580  vsmraid - ok
14:15:45.0235 2580  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
14:15:45.0298 2580  VSS - ok
14:15:45.0313 2580  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
14:15:45.0313 2580  vwifibus - ok
14:15:45.0329 2580  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
14:15:45.0329 2580  vwififlt - ok
14:15:45.0344 2580  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
14:15:45.0344 2580  vwifimp - ok
14:15:45.0407 2580  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         c:\Windows\System32\w32time.dll
14:15:45.0407 2580  W32Time - ok
14:15:45.0438 2580  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
14:15:45.0438 2580  WacomPen - ok
14:15:45.0454 2580  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
14:15:45.0454 2580  WANARP - ok
14:15:45.0454 2580  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
14:15:45.0454 2580  Wanarpv6 - ok
14:15:45.0516 2580  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
14:15:45.0563 2580  WatAdminSvc - ok
14:15:45.0610 2580  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
14:15:45.0625 2580  wbengine - ok
14:15:45.0641 2580  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
14:15:45.0641 2580  WbioSrvc - ok
14:15:45.0656 2580  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
14:15:45.0672 2580  wcncsvc - ok
14:15:45.0688 2580  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
14:15:45.0688 2580  WcsPlugInService - ok
14:15:45.0719 2580  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
14:15:45.0734 2580  Wd - ok
14:15:45.0766 2580  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
14:15:45.0781 2580  Wdf01000 - ok
14:15:45.0812 2580  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
14:15:45.0812 2580  WdiServiceHost - ok
14:15:45.0812 2580  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
14:15:45.0812 2580  WdiSystemHost - ok
14:15:45.0828 2580  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
14:15:45.0828 2580  WebClient - ok
14:15:45.0844 2580  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
14:15:45.0844 2580  Wecsvc - ok
14:15:45.0859 2580  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
14:15:45.0875 2580  wercplsupport - ok
14:15:45.0875 2580  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
14:15:45.0875 2580  WerSvc - ok
14:15:45.0890 2580  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
14:15:45.0890 2580  WfpLwf - ok
14:15:45.0922 2580  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
14:15:45.0922 2580  WIMMount - ok
14:15:45.0922 2580  WinHttpAutoProxySvc - ok
14:15:45.0984 2580  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
14:15:45.0984 2580  Winmgmt - ok
14:15:46.0031 2580  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
14:15:46.0062 2580  WinRM - ok
14:15:46.0093 2580  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
14:15:46.0093 2580  WinUsb - ok
14:15:46.0124 2580  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
14:15:46.0140 2580  Wlansvc - ok
14:15:46.0202 2580  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:15:46.0202 2580  wlcrasvc - ok
14:15:46.0312 2580  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:15:46.0327 2580  wlidsvc - ok
14:15:46.0358 2580  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
14:15:46.0358 2580  WmiAcpi - ok
14:15:46.0405 2580  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
14:15:46.0405 2580  wmiApSrv - ok
14:15:46.0421 2580  WMPNetworkSvc - ok
14:15:46.0468 2580  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
14:15:46.0468 2580  WPCSvc - ok
14:15:46.0483 2580  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
14:15:46.0483 2580  WPDBusEnum - ok
14:15:46.0514 2580  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
14:15:46.0514 2580  ws2ifsl - ok
14:15:46.0530 2580  WSearch - ok
14:15:46.0624 2580  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
14:15:46.0639 2580  wuauserv - ok
14:15:46.0670 2580  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
14:15:46.0670 2580  WudfPf - ok
14:15:46.0702 2580  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
14:15:46.0717 2580  wudfsvc - ok
14:15:46.0748 2580  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\windows\System32\wwansvc.dll
14:15:46.0764 2580  WwanSvc - ok
14:15:46.0764 2580  ================ Scan global ===============================
14:15:46.0826 2580  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
14:15:46.0858 2580  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
14:15:46.0858 2580  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
14:15:46.0889 2580  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
14:15:46.0920 2580  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
14:15:46.0920 2580  [Global] - ok
14:15:46.0920 2580  ================ Scan MBR ==================================
14:15:46.0936 2580  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
14:15:47.0154 2580  \Device\Harddisk0\DR0 - ok
14:15:47.0170 2580  [ C119C36C40063251695931377FC7B457 ] \Device\Harddisk1\DR1
14:15:47.0170 2580  \Device\Harddisk1\DR1 - ok
14:15:47.0170 2580  ================ Scan VBR ==================================
14:15:47.0170 2580  [ 74DC989F5899C559A12272061839641A ] \Device\Harddisk0\DR0\Partition1
14:15:47.0170 2580  \Device\Harddisk0\DR0\Partition1 - ok
14:15:47.0201 2580  [ 9436614332B247CC13B4E54FB428E7EC ] \Device\Harddisk0\DR0\Partition2
14:15:47.0201 2580  \Device\Harddisk0\DR0\Partition2 - ok
14:15:47.0201 2580  [ FE5D041FD75C2EEF8B5428E50077A26E ] \Device\Harddisk1\DR1\Partition1
14:15:47.0201 2580  \Device\Harddisk1\DR1\Partition1 - ok
14:15:47.0216 2580  [ 06A429D4F99A577E20A9C920C7530A63 ] \Device\Harddisk1\DR1\Partition2
14:15:47.0216 2580  \Device\Harddisk1\DR1\Partition2 - ok
14:15:47.0216 2580  ============================================================
14:15:47.0216 2580  Scan finished
14:15:47.0216 2580  ============================================================
14:15:47.0232 2572  Detected object count: 0
14:15:47.0232 2572  Actual detected object count: 0
 

 



#8 Dannyboy100

Dannyboy100
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2013 - 01:29 PM

# AdwCleaner v2.300 - Logfile created 05/11/2013 at 14:19:54
# Updated 28/04/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Danny - MARTIAND-PC
# Boot Mode : Safe mode with networking
# Running from : Z:\Danny\Desktop\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Vuze_Remote
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\Administrator\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Administrator\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Administrator\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Administrator\AppData\LocalLow\Vuze_Remote
Folder Deleted : C:\Users\Danny\AppData\Local\Babylon
Folder Deleted : C:\Users\Danny\AppData\Local\Conduit
Folder Deleted : C:\Users\Danny\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Danny\AppData\LocalLow\Vuze_Remote
Folder Deleted : C:\Users\Danny\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\93a8empx.default\ConduitCommon
Folder Deleted : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\93a8empx.default\CT2504091
Folder Deleted : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\93a8empx.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
Folder Deleted : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\93a8empx.default\extensions\toolbar@ask.com
Folder Deleted : C:\Users\Devin\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Devin\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Devin\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Devin\AppData\LocalLow\Vuze_Remote
Folder Deleted : C:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Vuze_Remote
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E30ED111-BD63-48C2-A6CB-AB3C9FFFB07C}
Key Deleted : HKLM\Software\Vuze_Remote
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E30ED111-BD63-48C2-A6CB-AB3C9FFFB07C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08B3BC8F-09B2-44F1-B976-4777982509ED}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F12F37C2-41FD-432C-9140-9B4070E941DC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16521

[OK] Registry is clean.

-\\ Mozilla Firefox v9.0.1 (en-US)

File : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\93a8empx.default\prefs.js

Deleted : user_pref("CT2504091..clientLogIsEnabled", false);
Deleted : user_pref("CT2504091..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT2504091..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT2504091.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT2504091.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT2504091.BrowserCompStateIsOpen_129707804829376918", true);
Deleted : user_pref("CT2504091.BrowserCompStateIsOpen_129990558296257215", true);
Deleted : user_pref("CT2504091.BrowserCompStateIsOpen_1359634298000", true);
Deleted : user_pref("CT2504091.CTID", "CT2504091");
Deleted : user_pref("CT2504091.CurrentServerDate", "19-4-2013");
Deleted : user_pref("CT2504091.DSInstall", false);
Deleted : user_pref("CT2504091.DialogsAlignMode", "LTR");
Deleted : user_pref("CT2504091.DialogsGetterLastCheckTime", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern Daylig[...]
Deleted : user_pref("CT2504091.DownloadReferralCookieData", "");
Deleted : user_pref("CT2504091.EMailNotifierPollDate", "Fri Apr 19 2013 06:58:07 GMT-0400 (Eastern Daylight Ti[...]
Deleted : user_pref("CT2504091.FeedLastCount129079840422964131", 15);
Deleted : user_pref("CT2504091.FeedPollDate128891351169457140", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern Da[...]
Deleted : user_pref("CT2504091.FeedPollDate129079840422964131", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern Da[...]
Deleted : user_pref("CT2504091.FeedTTL128891351169457140", 40);
Deleted : user_pref("CT2504091.FirstServerDate", "26-5-2012");
Deleted : user_pref("CT2504091.FirstTime", true);
Deleted : user_pref("CT2504091.FirstTimeFF3", true);
Deleted : user_pref("CT2504091.FixPageNotFoundErrors", true);
Deleted : user_pref("CT2504091.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT2504091.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT2504091.HPInstall", false);
Deleted : user_pref("CT2504091.HasUserGlobalKeys", true);
Deleted : user_pref("CT2504091.HomePageProtectorEnabled", false);
Deleted : user_pref("CT2504091.HomepageBeforeUnload", "hxxp://google.com/");
Deleted : user_pref("CT2504091.Initialize", true);
Deleted : user_pref("CT2504091.InitializeCommonPrefs", true);
Deleted : user_pref("CT2504091.InstallationAndCookieDataSentCount", 3);
Deleted : user_pref("CT2504091.InstallationId", "ConduitNSISIntegration");
Deleted : user_pref("CT2504091.InstallationType", "ConduitXPEIntegration");
Deleted : user_pref("CT2504091.InstalledDate", "Sat May 26 2012 08:02:42 GMT-0400 (Eastern Daylight Time)");
Deleted : user_pref("CT2504091.IsAlertDBUpdated", true);
Deleted : user_pref("CT2504091.IsGrouping", false);
Deleted : user_pref("CT2504091.IsInitSetupIni", true);
Deleted : user_pref("CT2504091.IsMulticommunity", false);
Deleted : user_pref("CT2504091.IsOpenThankYouPage", false);
Deleted : user_pref("CT2504091.IsOpenUninstallPage", false);
Deleted : user_pref("CT2504091.LanguagePackLastCheckTime", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern Dayligh[...]
Deleted : user_pref("CT2504091.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT2504091.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT2504091.LastLogin_3.10.0.1", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern Daylight Time)[...]
Deleted : user_pref("CT2504091.LatestVersion", "3.18.0.7");
Deleted : user_pref("CT2504091.Locale", "en-us");
Deleted : user_pref("CT2504091.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT2504091.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT2504091.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT2504091.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT2504091.OriginalFirstVersion", "3.10.0.1");
Deleted : user_pref("CT2504091.SearchCaption", "Web Search");
Deleted : user_pref("CT2504091.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
Deleted : user_pref("CT2504091.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT250[...]
Deleted : user_pref("CT2504091.SearchInNewTabEnabled", true);
Deleted : user_pref("CT2504091.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT2504091.SearchInNewTabLastCheckTime", "Fri Apr 19 2013 06:58:07 GMT-0400 (Eastern Dayli[...]
Deleted : user_pref("CT2504091.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT2504091.SearchProtectorEnabled", false);
Deleted : user_pref("CT2504091.SearchProtectorToolbarDisabled", false);
Deleted : user_pref("CT2504091.SendProtectorDataViaLogin", true);
Deleted : user_pref("CT2504091.ServiceMapLastCheckTime", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern Daylight [...]
Deleted : user_pref("CT2504091.SettingsLastCheckTime", "Fri Apr 19 2013 06:58:07 GMT-0400 (Eastern Daylight Ti[...]
Deleted : user_pref("CT2504091.SettingsLastUpdate", "1366359919");
Deleted : user_pref("CT2504091.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2504091&SearchSource=13");
Deleted : user_pref("CT2504091.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT2504091.ThirdPartyComponentsLastCheck", "Fri Apr 19 2013 06:58:07 GMT-0400 (Eastern Day[...]
Deleted : user_pref("CT2504091.ThirdPartyComponentsLastUpdate", "1331805997");
Deleted : user_pref("CT2504091.ToolbarShrinkedFromSetup", false);
Deleted : user_pref("CT2504091.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2504091");
Deleted : user_pref("CT2504091.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT2504091.UserID", "UN84339829777124949");
Deleted : user_pref("CT2504091.ValidationData_Toolbar", 0);
Deleted : user_pref("CT2504091.alertChannelId", "897164");
Deleted : user_pref("CT2504091.autoDisableScopes", -1);
Deleted : user_pref("CT2504091.backendstorage./9b+7e+x305", "247E27413334363379453A3D2A722C797A7E7A3128333B474[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e,x305", "247E28412F3F3E3779453A3D2A722C797B787D3128333C474[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e-x305", "247E2936303C363679453A3D2A722C797A207B3128333D462[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e.:2z527", "247E70727330333D4634413E3C3E204B404330783223232[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e.x305", "247E2A4137374434337A463B3E2B732D7A7D7C213229343F5[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e/x305", "247E2B413536327844393C29712B787C7B773027323E4C434[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e06cg5el8:", "6E6D6B6D707175737370");
Deleted : user_pref("CT2504091.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A7473717376777B797976242F4B4947[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e0x305", "247E2C403A407743383B28702A777C757D2F26313E4129554[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e1x305", "247E2D41313D403279453A3D2A722C7A77797E31283341473[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e2x305", "247E2E3542313D3D393A7B473C3F2C742E79207D322934435[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e3x305", "247E2F413F3B36333F47463F7D493E412E76307E222421352[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e4x305", "247E302C407642373A276F29777B74762E2530413E4F494A5[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e5x305", "247E3136422B7743383B28702A79757A772F2631434B3D495[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e6x305", "247E322C3E32323238453E7C483D402D752F7E7B2424342B3[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e7x305", "247E333D2C3F3E3F79453A3D2A722C7B7A797A31283347513[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e8x305", "247E343D3F3B35373B3F367C47472C742E7E7823322934495[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e9x305", "247E35332C3F327844393C29712B7B757979302732484C4F4[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e:x305", "247E36333B38327844393C29712B7B76797A3027324948554[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e;x305", "247E373F333F3738422F7B473C3F2C742E7E7A7A22332A354[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e<x305", "247E38343030442F463644377D493E412E7630217D2426352[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e=x305", "247E3933363F41413739357C483D402D752F207E2022342B3[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e>x305", "247E3A41363F323238387B473C3F2C742E7E20217C332A355[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e?x305", "247E3B2D2F2F334134403A3A7D494C2D752F2023207E342B3[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7e@x305", "247E3C40422B7743383B28702A7B767E782F26314E52543D2[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7eax305", "247E3D3D37387743383B28702A7B7A757E2F26314F4F544A5[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B26[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7ebx305", "247E3E393141303D33454036327E4A3F422F77317B7D23352[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7ecx305", "247E3F3D303043312E7A463B3E2B732D7B207E31283353515[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7edx305", "247E4035422A363879453A3D2A722C7D202F26315247543C4[...]
Deleted : user_pref("CT2504091.backendstorage./9b+7etx305", "247E6E2F2E3B323342357B44392B732D7A7B7B7C322934235[...]
Deleted : user_pref("CT2504091.backendstorage./9b-0?3g>d", "3D3D6B3F6F6C6D757A734371722047794D78257A4D25542A52[...]
Deleted : user_pref("CT2504091.backendstorage./9b-0?3g@6:5;", "");
Deleted : user_pref("CT2504091.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F292A212C393D44307832332[...]
Deleted : user_pref("CT2504091.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6A696B7273747576");
Deleted : user_pref("CT2504091.backendstorage./9b3=>@44i48?", "372C2D32697576334236334148477A213F3E484F4E4D464[...]
Deleted : user_pref("CT2504091.backendstorage./9b5ba==9cjag", "6B3E6F6D3E6D6F717A70457A777475484C4B7B237E");
Deleted : user_pref("CT2504091.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6B6D707175737371727176");
Deleted : user_pref("CT2504091.backendstorage./9b9643g3/9e", "6A");
Deleted : user_pref("CT2504091.backendstorage./9b;45>:bi9i7ie", "2B2E2C3D");
Deleted : user_pref("CT2504091.backendstorage./9b<:222h64<", "393F352F3E");
Deleted : user_pref("CT2504091.backendstorage./9b<:222h64<l8daj", "6D70706F7674727975732A7975727C7D757E7C");
Deleted : user_pref("CT2504091.backendstorage./9b=+03eh8h8j?:", "4443");
Deleted : user_pref("CT2504091.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B26514649[...]
Deleted : user_pref("CT2504091.backendstorage./9b?b0d:8aj62<h", "6D");
Deleted : user_pref("CT2504091.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B");
Deleted : user_pref("CT2504091.backendstorage.pg_enable", "74727565");
Deleted : user_pref("CT2504091.backendstorage.searchappstate", "32");
Deleted : user_pref("CT2504091.backendstorage.searchapptracking", "73656E74");
Deleted : user_pref("CT2504091.backendstorage.shoppingapp.gk.exipres", "4D6F6E2053657020313720323031322031393A[...]
Deleted : user_pref("CT2504091.backendstorage.shoppingapp.gk.geolocation", "756E6974656420737461746573");
Deleted : user_pref("CT2504091.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT2504091.globalFirstTimeInfoLastCheckTime", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern [...]
Deleted : user_pref("CT2504091.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT2504091.initDone", true);
Deleted : user_pref("CT2504091.isAppTrackingManagerOn", false);
Deleted : user_pref("CT2504091.myStuffEnabled", true);
Deleted : user_pref("CT2504091.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT2504091.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT2504091.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT2504091.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT2504091.navigateToUrlOnSearch", false);
Deleted : user_pref("CT2504091.oldAppsList", "129079840421557838,129079840422026594,111,129079849636241789,129[...]
Deleted : user_pref("CT2504091.revertSettingsEnabled", false);
Deleted : user_pref("CT2504091.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT2504091.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT2504091.testingCtid", "");
Deleted : user_pref("CT2504091.toolbarAppMetaDataLastCheckTime", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern D[...]
Deleted : user_pref("CT2504091.toolbarContextMenuLastCheckTime", "Fri Apr 19 2013 06:58:08 GMT-0400 (Eastern D[...]
Deleted : user_pref("CT2504091.undefined", "Thu Jun 14 2012 13:31:20 GMT-0400 (Eastern Daylight Time)");
Deleted : user_pref("CT2504091.usagesFlag", 1);
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2504091/CT2504091[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/897164/892962/US", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2504091", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2504091",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"[...]
Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Danny\\AppData\\Roaming\\Mozilla\\F[...]
Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.10.0.1");
Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2504091");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2504091");
Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT2504091");
Deleted : user_pref("CommunityToolbar.globalUserId", "93ec4322-07e9-424f-b32a-8e1a1c0738b5");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2504091");
Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Fri Apr 19 2013 06:58:0[...]
Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sun Apr 07 2013 06:25:49 GMT-040[...]
Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.locale", "");
Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 0);
Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Apr 19 2013 06:58:08 GMT-0400 (E[...]
Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "");
Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.notifications.userId", "c4fc1c9c-1512-4610-acf9-b4d3248c5778");
Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://google.com/");
Deleted : user_pref("CommunityToolbar.originalSearchEngine", "chrome://browser-region/locale/region.properties[...]

-\\ Google Chrome v26.0.1410.64

File : C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [23982 octets] - [11/05/2013 14:19:54]

########## EOF - C:\AdwCleaner[S1].txt - [24043 octets] ##########

 



#9 Dannyboy100

Dannyboy100
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2013 - 01:31 PM

I just realized I was in safe mode when I ran all 3.

 

Let me know if you need me to run them again.

 

Thanks



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:06 AM

Posted 13 May 2013 - 09:30 AM

Hi, went to see my mom over the weekend.
That should be OK. How is it now? Did you run ESET again?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users