Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Random pop ups and random links in web pages.


  • Please log in to reply
9 replies to this topic

#1 hairyelf

hairyelf

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:23 AM

Posted 22 May 2013 - 01:13 PM

I am not sure what it was that happened, but the last couple of days I've had an issue with pop ups on random web pages and have noticed various words on web pages all of a sudden becoming links.  There is also occasional commercials in bottom right of my firefox browser.  I have no idea where to start, but I do hope someone can help me.  I am running windows 7 home premium and firefox 20.0.1.  I hope to hear something soon of where to start.



BC AdBot (Login to Remove)

 


#2 Jimbob85

Jimbob85

  • Members
  • 308 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:VA, USA
  • Local time:09:23 AM

Posted 22 May 2013 - 02:28 PM

Hi and :welcome:  to BC!

 

Lets see what we can find.  Please run the following and include all log reports in your next reply along with any questions or comments.

 

 

Please Download Tdsskiller

    Run TDSSKiller.exe
    Click on Change Parameters
    Put a check in the box of Detect TDLFS file system
    Start scan
    When it is finished the utility outputs a list of detected objects with descriptions:
    The utility automatically selects an action (Cure or Delete) for malicious objects and asks you what to do with suspicious objects (Skip, by default)
    Just stick with the default options and click Continue
    If it wants to reboot please allow it to do so and let me know
    Click on Report and post the contents of the text file that will open

    By default, the utility outputs the log into system disk (it is usually the disk where the operating system is installed, C:\) root folder. The Log will have a name like: TDSSKiller.Version_Date_Time_log.txt.
 

 

 

Please Download Malwarebytes AKA MBAM

Update Malwarebytes via the update tab.
Run a full scan
When the scan finishes please select Remove Selected and make sure all of the boxes are checked
Please post the results

The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to
include the top portion which shows MBAM's database version and your operating system.

 

 

 

Please Download

ESET online scanner

Install it

Click on START, it should download the virus definitions
When scan completes, click on LIST of found threats

Export the list to desktop, copy the contents of the text file in your reply
You may not get a listing if nothing is found
 



#3 hairyelf

hairyelf
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:23 AM

Posted 22 May 2013 - 05:31 PM

Tdsskiller results

 

15:21:47.0507 2368  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:21:48.0248 2368  ============================================================
15:21:48.0248 2368  Current date / time: 2013/05/22 15:21:48.0248
15:21:48.0248 2368  SystemInfo:
15:21:48.0248 2368  
15:21:48.0248 2368  OS Version: 6.1.7601 ServicePack: 1.0
15:21:48.0248 2368  Product type: Workstation
15:21:48.0248 2368  ComputerName: ROB-PC
15:21:48.0248 2368  UserName: Rob
15:21:48.0248 2368  Windows directory: C:\Windows
15:21:48.0248 2368  System windows directory: C:\Windows
15:21:48.0248 2368  Running under WOW64
15:21:48.0248 2368  Processor architecture: Intel x64
15:21:48.0248 2368  Number of processors: 8
15:21:48.0248 2368  Page size: 0x1000
15:21:48.0248 2368  Boot type: Normal boot
15:21:48.0248 2368  ============================================================
15:21:49.0067 2368  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:21:56.0530 2368  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:21:56.0556 2368  Drive \Device\Harddisk6\DR6 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:22:04.0769 2368  Drive \Device\Harddisk7\DR7 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:22:04.0770 2368  Drive \Device\Harddisk8\DR10 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:22:10.0882 2368  ============================================================
15:22:10.0883 2368  \Device\Harddisk0\DR0:
15:22:10.0892 2368  MBR partitions:
15:22:10.0892 2368  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C5E800, BlocksNum 0x72AA7800
15:22:10.0892 2368  \Device\Harddisk1\DR1:
15:22:10.0892 2368  MBR partitions:
15:22:10.0892 2368  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
15:22:10.0892 2368  \Device\Harddisk6\DR6:
15:22:10.0901 2368  MBR partitions:
15:22:10.0901 2368  \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000
15:22:10.0901 2368  \Device\Harddisk7\DR7:
15:22:10.0901 2368  MBR partitions:
15:22:10.0901 2368  \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x73692052, BlocksNum 0x6D6F6320
15:22:10.0901 2368  \Device\Harddisk8\DR10:
15:22:10.0939 2368  MBR partitions:
15:22:10.0939 2368  \Device\Harddisk8\DR10\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x747059C1
15:22:10.0939 2368  ============================================================
15:22:10.0953 2368  C: <-> \Device\Harddisk0\DR0\Partition1
15:22:10.0975 2368  D: <-> \Device\Harddisk1\DR1\Partition1
15:22:10.0981 2368  L: <-> \Device\Harddisk8\DR10\Partition1
15:22:10.0981 2368  ============================================================
15:22:10.0981 2368  Initialize success
15:22:10.0981 2368  ============================================================
15:22:55.0941 6884  ============================================================
15:22:55.0941 6884  Scan started
15:22:55.0941 6884  Mode: Manual; TDLFS;
15:22:55.0941 6884  ============================================================
15:22:56.0182 6884  ================ Scan system memory ========================
15:22:56.0182 6884  System memory - ok
15:22:56.0183 6884  ================ Scan services =============================
15:22:56.0284 6884  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:22:56.0288 6884  1394ohci - ok
15:22:56.0306 6884  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:22:56.0310 6884  ACPI - ok
15:22:56.0314 6884  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:22:56.0315 6884  AcpiPmi - ok
15:22:56.0396 6884  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:22:56.0399 6884  AdobeFlashPlayerUpdateSvc - ok
15:22:56.0421 6884  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:22:56.0428 6884  adp94xx - ok
15:22:56.0436 6884  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:22:56.0447 6884  adpahci - ok
15:22:56.0451 6884  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:22:56.0453 6884  adpu320 - ok
15:22:56.0503 6884  [ 0D1875B197567FA5FC78E4913977B600 ] AE1000          C:\Windows\system32\DRIVERS\ae1000w7.sys
15:22:56.0523 6884  AE1000 - ok
15:22:56.0541 6884  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:22:56.0542 6884  AeLookupSvc - ok
15:22:56.0582 6884  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:22:56.0588 6884  AFD - ok
15:22:56.0600 6884  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:22:56.0601 6884  agp440 - ok
15:22:56.0613 6884  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:22:56.0614 6884  ALG - ok
15:22:56.0626 6884  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:22:56.0627 6884  aliide - ok
15:22:56.0637 6884  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:22:56.0638 6884  amdide - ok
15:22:56.0640 6884  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:22:56.0641 6884  AmdK8 - ok
15:22:56.0644 6884  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
15:22:56.0645 6884  AmdPPM - ok
15:22:56.0664 6884  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:22:56.0666 6884  amdsata - ok
15:22:56.0670 6884  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:22:56.0672 6884  amdsbs - ok
15:22:56.0683 6884  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:22:56.0683 6884  amdxata - ok
15:22:56.0699 6884  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:22:56.0701 6884  AppID - ok
15:22:56.0716 6884  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:22:56.0718 6884  AppIDSvc - ok
15:22:56.0740 6884  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
15:22:56.0741 6884  Appinfo - ok
15:22:56.0820 6884  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:22:56.0822 6884  Apple Mobile Device - ok
15:22:56.0836 6884  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
15:22:56.0839 6884  arc - ok
15:22:56.0849 6884  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:22:56.0851 6884  arcsas - ok
15:22:56.0889 6884  [ FB03A917C1294D3E6D671F24722E1BA3 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
15:22:56.0899 6884  asComSvc - ok
15:22:56.0929 6884  [ 705249A820CC541EE54BD2D091381ADF ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.11\aaHMSvc.exe
15:22:56.0941 6884  asHmComSvc - ok
15:22:56.0975 6884  [ EDAA17CE771C696655B6585F7CAD2100 ] ASInsHelp       C:\Windows\SysWow64\drivers\AsInsHelp64.sys
15:22:56.0976 6884  ASInsHelp - ok
15:22:56.0982 6884  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
15:22:56.0983 6884  AsIO - ok
15:22:57.0000 6884  [ E3B9C89D2ED4A538AB2FC6EC76FA2B17 ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
15:22:57.0002 6884  asmthub3 - ok
15:22:57.0036 6884  [ 88CE83BE5176020BE39194A6369AF2C2 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
15:22:57.0042 6884  asmtxhci - ok
15:22:57.0059 6884  [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.10\AsSysCtrlService.exe
15:22:57.0066 6884  AsSysCtrlService - ok
15:22:57.0077 6884  [ 1392B92179B07B672720763D9B1028A5 ] AsUpIO          C:\Windows\syswow64\drivers\AsUpIO.sys
15:22:57.0078 6884  AsUpIO - ok
15:22:57.0099 6884  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:22:57.0100 6884  AsyncMac - ok
15:22:57.0116 6884  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:22:57.0117 6884  atapi - ok
15:22:57.0158 6884  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:22:57.0167 6884  AudioEndpointBuilder - ok
15:22:57.0183 6884  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:22:57.0189 6884  AudioSrv - ok
15:22:57.0315 6884  [ 231B6AD3DB2866BC3FDB9979E6B2B61E ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
15:22:57.0407 6884  AVGIDSAgent - ok
15:22:57.0416 6884  [ 633360E94804E7BAFE642017817C9413 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
15:22:57.0418 6884  AVGIDSDriver - ok
15:22:57.0441 6884  [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter    C:\Windows\system32\DRIVERS\avgidsfiltera.sys
15:22:57.0442 6884  AVGIDSFilter - ok
15:22:57.0461 6884  [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
15:22:57.0462 6884  AVGIDSHA - ok
15:22:57.0472 6884  [ BE8BC5D10ABA05D7F6E79D8296906C86 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
15:22:57.0475 6884  Avgldx64 - ok
15:22:57.0491 6884  [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
15:22:57.0492 6884  Avgmfx64 - ok
15:22:57.0498 6884  [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
15:22:57.0500 6884  Avgrkx64 - ok
15:22:57.0533 6884  [ A441A655D6D9DDDDBA11994530F84981 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
15:22:57.0537 6884  Avgtdia - ok
15:22:57.0561 6884  [ 3B5657B6C11CDA87F664DD6F7DD0702D ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
15:22:57.0563 6884  avgtp - ok
15:22:57.0581 6884  [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd           C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
15:22:57.0584 6884  avgwd - ok
15:22:57.0612 6884  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:22:57.0614 6884  AxInstSV - ok
15:22:57.0642 6884  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:22:57.0649 6884  b06bdrv - ok
15:22:57.0672 6884  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:22:57.0677 6884  b57nd60a - ok
15:22:57.0737 6884  [ 104A50F620AFA44B3ED83A56F1689F5E ] Backup8 Scheduler C:\Program Files (x86)\Windows Live Mail Backup8\Backup8Sch.exe
15:22:57.0758 6884  Backup8 Scheduler - ok
15:22:57.0772 6884  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:22:57.0775 6884  BDESVC - ok
15:22:57.0784 6884  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:22:57.0785 6884  Beep - ok
15:22:57.0819 6884  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
15:22:57.0828 6884  BFE - ok
15:22:57.0857 6884  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
15:22:57.0869 6884  BITS - ok
15:22:57.0884 6884  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
15:22:57.0886 6884  blbdrive - ok
15:22:57.0962 6884  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:22:57.0968 6884  Bonjour Service - ok
15:22:57.0988 6884  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:22:57.0990 6884  bowser - ok
15:22:58.0009 6884  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:22:58.0011 6884  BrFiltLo - ok
15:22:58.0014 6884  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:22:58.0016 6884  BrFiltUp - ok
15:22:58.0037 6884  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:22:58.0040 6884  Browser - ok
15:22:58.0047 6884  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:22:58.0052 6884  Brserid - ok
15:22:58.0056 6884  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:22:58.0057 6884  BrSerWdm - ok
15:22:58.0061 6884  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:22:58.0062 6884  BrUsbMdm - ok
15:22:58.0066 6884  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:22:58.0067 6884  BrUsbSer - ok
15:22:58.0071 6884  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:22:58.0073 6884  BTHMODEM - ok
15:22:58.0083 6884  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:22:58.0085 6884  bthserv - ok
15:22:58.0095 6884  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:22:58.0097 6884  cdfs - ok
15:22:58.0115 6884  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:22:58.0118 6884  cdrom - ok
15:22:58.0126 6884  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:22:58.0128 6884  CertPropSvc - ok
15:22:58.0144 6884  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
15:22:58.0146 6884  circlass - ok
15:22:58.0247 6884  [ 6C99DE57C87D6F3EE85998A7E49F7BF9 ] CLDTVHNService  C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
15:22:58.0249 6884  CLDTVHNService - ok
15:22:58.0267 6884  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:22:58.0272 6884  CLFS - ok
15:22:58.0311 6884  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:22:58.0313 6884  clr_optimization_v2.0.50727_32 - ok
15:22:58.0344 6884  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:22:58.0346 6884  clr_optimization_v2.0.50727_64 - ok
15:22:58.0384 6884  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:22:58.0386 6884  clr_optimization_v4.0.30319_32 - ok
15:22:58.0409 6884  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:22:58.0412 6884  clr_optimization_v4.0.30319_64 - ok
15:22:58.0416 6884  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
15:22:58.0417 6884  CmBatt - ok
15:22:58.0430 6884  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:22:58.0432 6884  cmdide - ok
15:22:58.0459 6884  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
15:22:58.0465 6884  CNG - ok
15:22:58.0475 6884  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:22:58.0477 6884  Compbatt - ok
15:22:58.0498 6884  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:22:58.0500 6884  CompositeBus - ok
15:22:58.0508 6884  COMSysApp - ok
15:22:58.0520 6884  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:22:58.0522 6884  crcdisk - ok
15:22:58.0554 6884  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:22:58.0557 6884  CryptSvc - ok
15:22:58.0591 6884  [ B1C55A95006D621D04FE4A23F86C0A54 ] DCamUSBEMPIA    C:\Windows\system32\DRIVERS\emDevice64.sys
15:22:58.0607 6884  DCamUSBEMPIA - ok
15:22:58.0630 6884  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:22:58.0638 6884  DcomLaunch - ok
15:22:58.0652 6884  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:22:58.0656 6884  defragsvc - ok
15:22:58.0677 6884  [ 0A403702CB00432AC818523CD416BF67 ] Device Handle Service C:\Windows\SysWOW64\AsHookDevice.exe
15:22:58.0680 6884  Device Handle Service - ok
15:22:58.0696 6884  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:22:58.0698 6884  DfsC - ok
15:22:58.0724 6884  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:22:58.0729 6884  Dhcp - ok
15:22:58.0733 6884  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:22:58.0734 6884  discache - ok
15:22:58.0762 6884  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
15:22:58.0764 6884  Disk - ok
15:22:58.0792 6884  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:22:58.0796 6884  Dnscache - ok
15:22:58.0808 6884  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:22:58.0812 6884  dot3svc - ok
15:22:58.0821 6884  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:22:58.0824 6884  DPS - ok
15:22:58.0849 6884  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:22:58.0851 6884  drmkaud - ok
15:22:58.0892 6884  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:22:58.0905 6884  DXGKrnl - ok
15:22:58.0925 6884  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:22:58.0928 6884  EapHost - ok
15:22:58.0984 6884  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:22:59.0035 6884  ebdrv - ok
15:22:59.0055 6884  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:22:59.0057 6884  EFS - ok
15:22:59.0100 6884  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:22:59.0110 6884  ehRecvr - ok
15:22:59.0119 6884  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:22:59.0121 6884  ehSched - ok
15:22:59.0149 6884  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:22:59.0156 6884  elxstor - ok
15:22:59.0198 6884  [ 8543BB84CD5872CD1619183F5CBBE3F9 ] emAudio         C:\Windows\system32\drivers\emAudio64.sys
15:22:59.0201 6884  emAudio - ok
15:22:59.0217 6884  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:22:59.0219 6884  ErrDev - ok
15:22:59.0248 6884  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:22:59.0254 6884  EventSystem - ok
15:22:59.0263 6884  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:22:59.0266 6884  exfat - ok
15:22:59.0287 6884  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:22:59.0290 6884  fastfat - ok
15:22:59.0322 6884  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:22:59.0332 6884  Fax - ok
15:22:59.0336 6884  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
15:22:59.0337 6884  fdc - ok
15:22:59.0353 6884  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:22:59.0354 6884  fdPHost - ok
15:22:59.0363 6884  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:22:59.0366 6884  FDResPub - ok
15:22:59.0369 6884  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:22:59.0371 6884  FileInfo - ok
15:22:59.0384 6884  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:22:59.0385 6884  Filetrace - ok
15:22:59.0395 6884  [ 73FBB50C4D92ADC30A9D57A269489A0B ] FiltUSBEMPIA    C:\Windows\system32\DRIVERS\emFilter64.sys
15:22:59.0397 6884  FiltUSBEMPIA - ok
15:22:59.0400 6884  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:22:59.0402 6884  flpydisk - ok
15:22:59.0419 6884  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:22:59.0423 6884  FltMgr - ok
15:22:59.0469 6884  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
15:22:59.0494 6884  FontCache - ok
15:22:59.0544 6884  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:22:59.0546 6884  FontCache3.0.0.0 - ok
15:22:59.0557 6884  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:22:59.0559 6884  FsDepends - ok
15:22:59.0583 6884  [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
15:22:59.0585 6884  fssfltr - ok
15:22:59.0642 6884  [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:22:59.0667 6884  fsssvc - ok
15:22:59.0703 6884  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:22:59.0707 6884  Fs_Rec - ok
15:22:59.0740 6884  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:22:59.0744 6884  fvevol - ok
15:22:59.0764 6884  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:22:59.0766 6884  gagp30kx - ok
15:22:59.0794 6884  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:22:59.0795 6884  GEARAspiWDM - ok
15:22:59.0838 6884  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:22:59.0849 6884  gpsvc - ok
15:22:59.0861 6884  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:22:59.0863 6884  hcw85cir - ok
15:22:59.0885 6884  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:22:59.0889 6884  HdAudAddService - ok
15:22:59.0917 6884  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:22:59.0920 6884  HDAudBus - ok
15:22:59.0924 6884  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:22:59.0925 6884  HidBatt - ok
15:22:59.0937 6884  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:22:59.0939 6884  HidBth - ok
15:22:59.0945 6884  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:22:59.0946 6884  HidIr - ok
15:22:59.0956 6884  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
15:22:59.0957 6884  hidserv - ok
15:22:59.0962 6884  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:22:59.0963 6884  HidUsb - ok
15:22:59.0974 6884  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:22:59.0976 6884  hkmsvc - ok
15:22:59.0988 6884  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:22:59.0991 6884  HomeGroupListener - ok
15:23:00.0010 6884  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:23:00.0013 6884  HomeGroupProvider - ok
15:23:00.0028 6884  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:23:00.0030 6884  HpSAMD - ok
15:23:00.0057 6884  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:23:00.0064 6884  HTTP - ok
15:23:00.0075 6884  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:23:00.0076 6884  hwpolicy - ok
15:23:00.0089 6884  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:23:00.0091 6884  i8042prt - ok
15:23:00.0118 6884  [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor          C:\Windows\system32\drivers\iaStor.sys
15:23:00.0124 6884  iaStor - ok
15:23:00.0147 6884  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:23:00.0152 6884  iaStorV - ok
15:23:00.0190 6884  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:23:00.0198 6884  idsvc - ok
15:23:00.0210 6884  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:23:00.0211 6884  iirsp - ok
15:23:00.0233 6884  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:23:00.0241 6884  IKEEXT - ok
15:23:00.0297 6884  [ DAB7318CCFA8081200D5B7B486793F74 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:23:00.0342 6884  IntcAzAudAddService - ok
15:23:00.0355 6884  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:23:00.0356 6884  intelide - ok
15:23:00.0372 6884  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:23:00.0374 6884  intelppm - ok
15:23:00.0387 6884  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:23:00.0389 6884  IPBusEnum - ok
15:23:00.0407 6884  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:23:00.0409 6884  IpFilterDriver - ok
15:23:00.0448 6884  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:23:00.0456 6884  iphlpsvc - ok
15:23:00.0460 6884  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:23:00.0462 6884  IPMIDRV - ok
15:23:00.0466 6884  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:23:00.0468 6884  IPNAT - ok
15:23:00.0533 6884  [ 2872B90D57C8310194A78A9787406467 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:23:00.0547 6884  iPod Service - ok
15:23:00.0567 6884  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:23:00.0568 6884  IRENUM - ok
15:23:00.0585 6884  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:23:00.0586 6884  isapnp - ok
15:23:00.0601 6884  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:23:00.0605 6884  iScsiPrt - ok
15:23:00.0621 6884  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:23:00.0623 6884  kbdclass - ok
15:23:00.0632 6884  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:23:00.0633 6884  kbdhid - ok
15:23:00.0655 6884  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:23:00.0656 6884  KeyIso - ok
15:23:00.0680 6884  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:23:00.0682 6884  KSecDD - ok
15:23:00.0709 6884  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:23:00.0711 6884  KSecPkg - ok
15:23:00.0723 6884  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:23:00.0725 6884  ksthunk - ok
15:23:00.0751 6884  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:23:00.0757 6884  KtmRm - ok
15:23:00.0781 6884  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:23:00.0787 6884  LanmanServer - ok
15:23:00.0797 6884  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:23:00.0801 6884  LanmanWorkstation - ok
15:23:00.0818 6884  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:23:00.0821 6884  lltdio - ok
15:23:00.0845 6884  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:23:00.0850 6884  lltdsvc - ok
15:23:00.0864 6884  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:23:00.0866 6884  lmhosts - ok
15:23:00.0910 6884  [ 98B16E756243BEA9410E32025B19C06F ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:23:00.0914 6884  LMS - ok
15:23:00.0940 6884  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:23:00.0941 6884  LSI_FC - ok
15:23:00.0949 6884  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:23:00.0951 6884  LSI_SAS - ok
15:23:00.0963 6884  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:23:00.0965 6884  LSI_SAS2 - ok
15:23:00.0982 6884  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:23:00.0985 6884  LSI_SCSI - ok
15:23:01.0000 6884  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:23:01.0002 6884  luafv - ok
15:23:01.0031 6884  [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus       C:\Windows\system32\DRIVERS\MarvinBus64.sys
15:23:01.0034 6884  MarvinBus - ok
15:23:01.0051 6884  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:23:01.0054 6884  Mcx2Svc - ok
15:23:01.0061 6884  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:23:01.0062 6884  megasas - ok
15:23:01.0078 6884  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:23:01.0081 6884  MegaSR - ok
15:23:01.0094 6884  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\drivers\HECIx64.sys
15:23:01.0095 6884  MEIx64 - ok
15:23:01.0106 6884  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:23:01.0108 6884  MMCSS - ok
15:23:01.0122 6884  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
15:23:01.0123 6884  Modem - ok
15:23:01.0148 6884  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:23:01.0149 6884  monitor - ok
15:23:01.0169 6884  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:23:01.0171 6884  mouclass - ok
15:23:01.0175 6884  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:23:01.0177 6884  mouhid - ok
15:23:01.0195 6884  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:23:01.0197 6884  mountmgr - ok
15:23:01.0228 6884  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:23:01.0229 6884  MozillaMaintenance - ok
15:23:01.0233 6884  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:23:01.0235 6884  mpio - ok
15:23:01.0243 6884  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:23:01.0245 6884  mpsdrv - ok
15:23:01.0259 6884  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:23:01.0267 6884  MpsSvc - ok
15:23:01.0270 6884  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:23:01.0272 6884  MRxDAV - ok
15:23:01.0293 6884  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:23:01.0294 6884  mrxsmb - ok
15:23:01.0311 6884  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:23:01.0315 6884  mrxsmb10 - ok
15:23:01.0324 6884  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:23:01.0327 6884  mrxsmb20 - ok
15:23:01.0337 6884  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:23:01.0339 6884  msahci - ok
15:23:01.0352 6884  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:23:01.0354 6884  msdsm - ok
15:23:01.0364 6884  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:23:01.0367 6884  MSDTC - ok
15:23:01.0387 6884  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:23:01.0387 6884  Msfs - ok
15:23:01.0404 6884  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:23:01.0406 6884  mshidkmdf - ok
15:23:01.0418 6884  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:23:01.0419 6884  msisadrv - ok
15:23:01.0439 6884  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:23:01.0442 6884  MSiSCSI - ok
15:23:01.0446 6884  msiserver - ok
15:23:01.0474 6884  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:23:01.0476 6884  MSKSSRV - ok
15:23:01.0485 6884  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:23:01.0486 6884  MSPCLOCK - ok
15:23:01.0502 6884  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:23:01.0503 6884  MSPQM - ok
15:23:01.0516 6884  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:23:01.0519 6884  MsRPC - ok
15:23:01.0527 6884  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:23:01.0528 6884  mssmbios - ok
15:23:01.0540 6884  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:23:01.0541 6884  MSTEE - ok
15:23:01.0544 6884  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:23:01.0545 6884  MTConfig - ok
15:23:01.0556 6884  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:23:01.0556 6884  Mup - ok
15:23:01.0576 6884  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:23:01.0583 6884  napagent - ok
15:23:01.0610 6884  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:23:01.0614 6884  NativeWifiP - ok
15:23:01.0648 6884  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:23:01.0657 6884  NDIS - ok
15:23:01.0670 6884  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:23:01.0672 6884  NdisCap - ok
15:23:01.0696 6884  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:23:01.0698 6884  NdisTapi - ok
15:23:01.0721 6884  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:23:01.0723 6884  Ndisuio - ok
15:23:01.0730 6884  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:23:01.0732 6884  NdisWan - ok
15:23:01.0747 6884  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:23:01.0749 6884  NDProxy - ok
15:23:01.0817 6884  [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
15:23:01.0829 6884  Nero BackItUp Scheduler 4.0 - ok
15:23:01.0847 6884  [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:23:01.0849 6884  Net Driver HPZ12 - ok
15:23:01.0861 6884  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:23:01.0862 6884  NetBIOS - ok
15:23:01.0881 6884  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:23:01.0885 6884  NetBT - ok
15:23:01.0913 6884  [ 15DBD5483BE3BFCD44E63A5F1A6F250B ] NETGEARGenieDaemon C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
15:23:01.0916 6884  NETGEARGenieDaemon - ok
15:23:01.0938 6884  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:23:01.0940 6884  Netlogon - ok
15:23:01.0962 6884  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:23:01.0968 6884  Netman - ok
15:23:01.0986 6884  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:23:01.0994 6884  netprofm - ok
15:23:02.0029 6884  [ 81B8D0C1CE44A7FDBD596B693783950C ] netr7364        C:\Windows\system32\DRIVERS\netr7364.sys
15:23:02.0039 6884  netr7364 - ok
15:23:02.0060 6884  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:23:02.0063 6884  NetTcpPortSharing - ok
15:23:02.0082 6884  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:23:02.0083 6884  nfrd960 - ok
15:23:02.0109 6884  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:23:02.0115 6884  NlaSvc - ok
15:23:02.0155 6884  [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF             C:\Windows\system32\drivers\npf.sys
15:23:02.0157 6884  NPF - ok
15:23:02.0164 6884  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:23:02.0165 6884  Npfs - ok
15:23:02.0189 6884  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:23:02.0191 6884  nsi - ok
15:23:02.0202 6884  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:23:02.0204 6884  nsiproxy - ok
15:23:02.0252 6884  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:23:02.0277 6884  Ntfs - ok
15:23:02.0368 6884  [ 10694A19236A6355741914C3737CF3A5 ] ntk_dtv         C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\ntk_dtv_64.sys
15:23:02.0373 6884  ntk_dtv - ok
15:23:02.0386 6884  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:23:02.0387 6884  Null - ok
15:23:02.0412 6884  [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
15:23:02.0416 6884  NVHDA - ok
15:23:02.0622 6884  [ 85B6A1C935935FBAE92B837F3AAAA811 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:23:02.0771 6884  nvlddmkm - ok
15:23:02.0790 6884  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:23:02.0791 6884  nvraid - ok
15:23:02.0800 6884  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:23:02.0802 6884  nvstor - ok
15:23:02.0832 6884  [ FB3C5813E4E278C435C1092075F496AC ] NVSvc           C:\Windows\system32\nvvsvc.exe
15:23:02.0841 6884  NVSvc - ok
15:23:02.0855 6884  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:23:02.0857 6884  nv_agp - ok
15:23:02.0860 6884  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:23:02.0861 6884  ohci1394 - ok
15:23:02.0871 6884  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:23:02.0874 6884  p2pimsvc - ok
15:23:02.0888 6884  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:23:02.0893 6884  p2psvc - ok
15:23:02.0895 6884  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
15:23:02.0896 6884  Parport - ok
15:23:02.0910 6884  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:23:02.0911 6884  partmgr - ok
15:23:02.0921 6884  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:23:02.0924 6884  PcaSvc - ok
15:23:02.0940 6884  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:23:02.0942 6884  pci - ok
15:23:02.0948 6884  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:23:02.0948 6884  pciide - ok
15:23:02.0964 6884  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:23:02.0966 6884  pcmcia - ok
15:23:02.0975 6884  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:23:02.0976 6884  pcw - ok
15:23:02.0995 6884  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:23:03.0004 6884  PEAUTH - ok
15:23:03.0067 6884  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:23:03.0069 6884  PerfHost - ok
15:23:03.0109 6884  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:23:03.0134 6884  pla - ok
15:23:03.0175 6884  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:23:03.0180 6884  PlugPlay - ok
15:23:03.0209 6884  [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:23:03.0211 6884  Pml Driver HPZ12 - ok
15:23:03.0216 6884  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:23:03.0218 6884  PNRPAutoReg - ok
15:23:03.0230 6884  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:23:03.0232 6884  PNRPsvc - ok
15:23:03.0261 6884  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:23:03.0268 6884  PolicyAgent - ok
15:23:03.0289 6884  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:23:03.0293 6884  Power - ok
15:23:03.0317 6884  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:23:03.0319 6884  PptpMiniport - ok
15:23:03.0332 6884  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
15:23:03.0334 6884  Processor - ok
15:23:03.0349 6884  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:23:03.0353 6884  ProfSvc - ok
15:23:03.0363 6884  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:23:03.0364 6884  ProtectedStorage - ok
15:23:03.0379 6884  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:23:03.0381 6884  Psched - ok
15:23:03.0427 6884  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:23:03.0449 6884  ql2300 - ok
15:23:03.0464 6884  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:23:03.0467 6884  ql40xx - ok
15:23:03.0485 6884  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:23:03.0489 6884  QWAVE - ok
15:23:03.0499 6884  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:23:03.0500 6884  QWAVEdrv - ok
15:23:03.0509 6884  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:23:03.0510 6884  RasAcd - ok
15:23:03.0528 6884  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:23:03.0529 6884  RasAgileVpn - ok
15:23:03.0532 6884  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:23:03.0534 6884  RasAuto - ok
15:23:03.0540 6884  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:23:03.0542 6884  Rasl2tp - ok
15:23:03.0554 6884  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:23:03.0558 6884  RasMan - ok
15:23:03.0568 6884  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:23:03.0569 6884  RasPppoe - ok
15:23:03.0577 6884  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:23:03.0578 6884  RasSstp - ok
15:23:03.0589 6884  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:23:03.0591 6884  rdbss - ok
15:23:03.0604 6884  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
15:23:03.0605 6884  rdpbus - ok
15:23:03.0620 6884  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:23:03.0621 6884  RDPCDD - ok
15:23:03.0638 6884  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:23:03.0639 6884  RDPENCDD - ok
15:23:03.0650 6884  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:23:03.0651 6884  RDPREFMP - ok
15:23:03.0682 6884  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:23:03.0684 6884  RdpVideoMiniport - ok
15:23:03.0705 6884  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:23:03.0709 6884  RDPWD - ok
15:23:03.0726 6884  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:23:03.0729 6884  rdyboost - ok
15:23:03.0775 6884  [ A0FF419B61AE47E26ADF3BB15DB4F2FE ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
15:23:03.0780 6884  RealNetworks Downloader Resolver Service - ok
15:23:03.0800 6884  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:23:03.0803 6884  RemoteAccess - ok
15:23:03.0810 6884  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:23:03.0814 6884  RemoteRegistry - ok
15:23:03.0821 6884  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:23:03.0825 6884  RpcEptMapper - ok
15:23:03.0839 6884  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:23:03.0841 6884  RpcLocator - ok
15:23:03.0854 6884  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:23:03.0858 6884  RpcSs - ok
15:23:03.0872 6884  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:23:03.0873 6884  rspndr - ok
15:23:03.0896 6884  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:23:03.0901 6884  RTL8167 - ok
15:23:03.0916 6884  [ E16B7C030A05EF649B18FAB0A93D871F ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
15:23:03.0925 6884  RtNdPt60 - ok
15:23:03.0935 6884  [ 1DE78F5008120CD79B34C12394DCD493 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam60.sys
15:23:03.0942 6884  RTTEAMPT - ok
15:23:03.0948 6884  [ B1018AA1B5735F5FA89FD4DADF4BEA7A ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan60.sys
15:23:03.0964 6884  RTVLANPT - ok
15:23:03.0979 6884  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:23:03.0980 6884  SamSs - ok
15:23:03.0991 6884  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:23:03.0993 6884  sbp2port - ok
15:23:04.0012 6884  [ EECBBF7D76300E5558D316983961FFC1 ] ScanUSBEMPIA    C:\Windows\system32\DRIVERS\emScan64.sys
15:23:04.0013 6884  ScanUSBEMPIA - ok
15:23:04.0029 6884  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:23:04.0032 6884  SCardSvr - ok
15:23:04.0040 6884  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:23:04.0042 6884  scfilter - ok
15:23:04.0064 6884  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:23:04.0075 6884  Schedule - ok
15:23:04.0092 6884  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:23:04.0093 6884  SCPolicySvc - ok
15:23:04.0102 6884  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:23:04.0105 6884  SDRSVC - ok
15:23:04.0122 6884  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:23:04.0123 6884  secdrv - ok
15:23:04.0134 6884  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:23:04.0136 6884  seclogon - ok
15:23:04.0158 6884  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
15:23:04.0160 6884  SENS - ok
15:23:04.0165 6884  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:23:04.0167 6884  SensrSvc - ok
15:23:04.0183 6884  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
15:23:04.0184 6884  Serenum - ok
15:23:04.0207 6884  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
15:23:04.0208 6884  Serial - ok
15:23:04.0210 6884  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:23:04.0211 6884  sermouse - ok
15:23:04.0222 6884  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:23:04.0224 6884  SessionEnv - ok
15:23:04.0226 6884  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:23:04.0227 6884  sffdisk - ok
15:23:04.0229 6884  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:23:04.0230 6884  sffp_mmc - ok
15:23:04.0232 6884  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:23:04.0233 6884  sffp_sd - ok
15:23:04.0235 6884  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:23:04.0236 6884  sfloppy - ok
15:23:04.0266 6884  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:23:04.0270 6884  SharedAccess - ok
15:23:04.0283 6884  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:23:04.0287 6884  ShellHWDetection - ok
15:23:04.0305 6884  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:23:04.0307 6884  SiSRaid2 - ok
15:23:04.0320 6884  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:23:04.0323 6884  SiSRaid4 - ok
15:23:04.0348 6884  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:23:04.0351 6884  Smb - ok
15:23:04.0374 6884  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:23:04.0378 6884  SNMPTRAP - ok
15:23:04.0450 6884  [ C94279F34B1F39ED2F6D2DDCB4E6CDCB ] SplashtopRemoteService C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
15:23:04.0458 6884  SplashtopRemoteService - ok
15:23:04.0468 6884  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:23:04.0469 6884  spldr - ok
15:23:04.0500 6884  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:23:04.0509 6884  Spooler - ok
15:23:04.0592 6884  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:23:04.0640 6884  sppsvc - ok
15:23:04.0649 6884  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:23:04.0651 6884  sppuinotify - ok
15:23:04.0674 6884  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:23:04.0678 6884  srv - ok
15:23:04.0690 6884  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:23:04.0693 6884  srv2 - ok
15:23:04.0703 6884  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:23:04.0704 6884  srvnet - ok
15:23:04.0727 6884  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:23:04.0732 6884  SSDPSRV - ok
15:23:04.0746 6884  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:23:04.0749 6884  SstpSvc - ok
15:23:04.0802 6884  [ F9AEDD871E1CD759B95728C9B935D203 ] SSUService      C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
15:23:04.0817 6884  SSUService - ok
15:23:04.0830 6884  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:23:04.0832 6884  stexstor - ok
15:23:04.0854 6884  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
15:23:04.0855 6884  StillCam - ok
15:23:04.0885 6884  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:23:04.0892 6884  stisvc - ok
15:23:04.0900 6884  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:23:04.0901 6884  swenum - ok
15:23:04.0915 6884  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:23:04.0922 6884  swprv - ok
15:23:04.0957 6884  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:23:04.0989 6884  SysMain - ok
15:23:04.0998 6884  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:23:05.0001 6884  TabletInputService - ok
15:23:05.0015 6884  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:23:05.0019 6884  TapiSrv - ok
15:23:05.0032 6884  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:23:05.0034 6884  TBS - ok
15:23:05.0076 6884  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:23:05.0100 6884  Tcpip - ok
15:23:05.0131 6884  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:23:05.0139 6884  TCPIP6 - ok
15:23:05.0158 6884  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:23:05.0160 6884  tcpipreg - ok
15:23:05.0174 6884  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:23:05.0175 6884  TDPIPE - ok
15:23:05.0191 6884  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:23:05.0192 6884  TDTCP - ok
15:23:05.0209 6884  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:23:05.0211 6884  tdx - ok
15:23:05.0220 6884  [ 1DE78F5008120CD79B34C12394DCD493 ] TEAM            C:\Windows\system32\DRIVERS\RtTeam60.sys
15:23:05.0220 6884  TEAM - ok
15:23:05.0232 6884  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:23:05.0233 6884  TermDD - ok
15:23:05.0249 6884  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:23:05.0255 6884  TermService - ok
15:23:05.0268 6884  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:23:05.0270 6884  Themes - ok
15:23:05.0282 6884  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:23:05.0283 6884  THREADORDER - ok
15:23:05.0293 6884  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:23:05.0295 6884  TrkWks - ok
15:23:05.0325 6884  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:23:05.0328 6884  TrustedInstaller - ok
15:23:05.0343 6884  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:23:05.0345 6884  tssecsrv - ok
15:23:05.0375 6884  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:23:05.0377 6884  TsUsbFlt - ok
15:23:05.0393 6884  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:23:05.0395 6884  TsUsbGD - ok
15:23:05.0422 6884  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:23:05.0425 6884  tunnel - ok
15:23:05.0440 6884  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:23:05.0442 6884  uagp35 - ok
15:23:05.0455 6884  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:23:05.0459 6884  udfs - ok
15:23:05.0468 6884  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:23:05.0470 6884  UI0Detect - ok
15:23:05.0479 6884  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:23:05.0481 6884  uliagpkx - ok
15:23:05.0489 6884  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:23:05.0491 6884  umbus - ok
15:23:05.0498 6884  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:23:05.0499 6884  UmPass - ok
15:23:05.0570 6884  [ 7A78ED1088890114DFDE2C4AB038D6B6 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
15:23:05.0609 6884  UNS - ok
15:23:05.0623 6884  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:23:05.0628 6884  upnphost - ok
15:23:05.0655 6884  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:23:05.0663 6884  USBAAPL64 - ok
15:23:05.0676 6884  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:23:05.0678 6884  usbaudio - ok
15:23:05.0686 6884  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:23:05.0687 6884  usbccgp - ok
15:23:05.0702 6884  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:23:05.0703 6884  usbcir - ok
15:23:05.0712 6884  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
15:23:05.0713 6884  usbehci - ok
15:23:05.0727 6884  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:23:05.0731 6884  usbhub - ok
15:23:05.0740 6884  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:23:05.0741 6884  usbohci - ok
15:23:05.0749 6884  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
15:23:05.0750 6884  usbprint - ok
15:23:05.0758 6884  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:23:05.0760 6884  USBSTOR - ok
15:23:05.0775 6884  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:23:05.0776 6884  usbuhci - ok
15:23:05.0789 6884  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:23:05.0790 6884  UxSms - ok
15:23:05.0805 6884  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:23:05.0807 6884  VaultSvc - ok
15:23:05.0820 6884  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:23:05.0821 6884  vdrvroot - ok
15:23:05.0840 6884  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:23:05.0849 6884  vds - ok
15:23:05.0862 6884  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:23:05.0864 6884  vga - ok
15:23:05.0877 6884  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:23:05.0878 6884  VgaSave - ok
15:23:05.0900 6884  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:23:05.0903 6884  vhdmp - ok
15:23:05.0913 6884  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:23:05.0915 6884  viaide - ok
15:23:05.0934 6884  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:23:05.0936 6884  volmgr - ok
15:23:05.0953 6884  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:23:05.0957 6884  volmgrx - ok
15:23:05.0973 6884  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:23:05.0977 6884  volsnap - ok
15:23:06.0002 6884  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:23:06.0005 6884  vsmraid - ok
15:23:06.0053 6884  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:23:06.0087 6884  VSS - ok
15:23:06.0202 6884  [ 4B817450226F93C31ADD5BCC27FED27A ] vToolbarUpdater15.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe
15:23:06.0214 6884  vToolbarUpdater15.2.0 - ok
15:23:06.0220 6884  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:23:06.0222 6884  vwifibus - ok
15:23:06.0239 6884  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:23:06.0241 6884  vwififlt - ok
15:23:06.0265 6884  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:23:06.0269 6884  W32Time - ok
15:23:06.0283 6884  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:23:06.0284 6884  WacomPen - ok
15:23:06.0301 6884  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:23:06.0303 6884  WANARP - ok
15:23:06.0305 6884  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:23:06.0306 6884  Wanarpv6 - ok
15:23:06.0345 6884  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:23:06.0356 6884  WatAdminSvc - ok
15:23:06.0370 6884  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:23:06.0383 6884  wbengine - ok
15:23:06.0395 6884  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:23:06.0398 6884  WbioSrvc - ok
15:23:06.0411 6884  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:23:06.0415 6884  wcncsvc - ok
15:23:06.0425 6884  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:23:06.0427 6884  WcsPlugInService - ok
15:23:06.0436 6884  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
15:23:06.0437 6884  Wd - ok
15:23:06.0459 6884  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:23:06.0465 6884  Wdf01000 - ok
15:23:06.0476 6884  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:23:06.0478 6884  WdiServiceHost - ok
15:23:06.0480 6884  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:23:06.0481 6884  WdiSystemHost - ok
15:23:06.0493 6884  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:23:06.0496 6884  WebClient - ok
15:23:06.0511 6884  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:23:06.0515 6884  Wecsvc - ok
15:23:06.0523 6884  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:23:06.0525 6884  wercplsupport - ok
15:23:06.0531 6884  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:23:06.0533 6884  WerSvc - ok
15:23:06.0540 6884  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:23:06.0541 6884  WfpLwf - ok
15:23:06.0547 6884  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:23:06.0548 6884  WIMMount - ok
15:23:06.0559 6884  WinDefend - ok
15:23:06.0568 6884  WinHttpAutoProxySvc - ok
15:23:06.0602 6884  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:23:06.0605 6884  Winmgmt - ok
15:23:06.0642 6884  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:23:06.0676 6884  WinRM - ok
15:23:06.0715 6884  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:23:06.0718 6884  WinUsb - ok
15:23:06.0743 6884  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:23:06.0755 6884  Wlansvc - ok
15:23:06.0815 6884  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:23:06.0817 6884  wlcrasvc - ok
15:23:06.0878 6884  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:23:06.0921 6884  wlidsvc - ok
15:23:06.0940 6884  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:23:06.0942 6884  WmiAcpi - ok
15:23:06.0963 6884  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:23:06.0967 6884  wmiApSrv - ok
15:23:06.0981 6884  WMPNetworkSvc - ok
15:23:06.0993 6884  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:23:06.0997 6884  WPCSvc - ok
15:23:07.0009 6884  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:23:07.0014 6884  WPDBusEnum - ok
15:23:07.0027 6884  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:23:07.0029 6884  ws2ifsl - ok
15:23:07.0048 6884  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
15:23:07.0052 6884  wscsvc - ok
15:23:07.0055 6884  WSearch - ok
15:23:07.0118 6884  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:23:07.0161 6884  wuauserv - ok
15:23:07.0201 6884  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:23:07.0203 6884  WudfPf - ok
15:23:07.0219 6884  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:23:07.0222 6884  WUDFRd - ok
15:23:07.0253 6884  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:23:07.0257 6884  wudfsvc - ok
15:23:07.0284 6884  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:23:07.0290 6884  WwanSvc - ok
15:23:07.0351 6884  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
15:23:07.0359 6884  YahooAUService - ok
15:23:07.0376 6884  ================ Scan global ===============================
15:23:07.0389 6884  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:23:07.0413 6884  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:23:07.0423 6884  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:23:07.0447 6884  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:23:07.0467 6884  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:23:07.0473 6884  [Global] - ok
15:23:07.0473 6884  ================ Scan MBR ==================================
15:23:07.0485 6884  [ 4976D4A7A40B83FC7F06EE4BDD84EB9B ] \Device\Harddisk0\DR0
15:23:07.0727 6884  \Device\Harddisk0\DR0 - ok
15:23:07.0729 6884  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
15:23:07.0820 6884  \Device\Harddisk1\DR1 - ok
15:23:07.0824 6884  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk6\DR6
15:23:07.0937 6884  \Device\Harddisk6\DR6 - ok
15:23:07.0941 6884  [ 8C8A8FDEECA441B741D19DAE64FD91B9 ] \Device\Harddisk7\DR7
15:23:08.0081 6884  \Device\Harddisk7\DR7 - ok
15:23:08.0085 6884  [ 739B36F7A373FC81121D831231B6D311 ] \Device\Harddisk8\DR10
15:23:08.0268 6884  \Device\Harddisk8\DR10 - ok
15:23:08.0268 6884  ================ Scan VBR ==================================
15:23:08.0271 6884  [ FA2DE29312343EC79EEFFCCAF716232D ] \Device\Harddisk0\DR0\Partition1
15:23:08.0272 6884  \Device\Harddisk0\DR0\Partition1 - ok
15:23:08.0275 6884  [ 102B78410EA47E2DC97DD50DD8139BD8 ] \Device\Harddisk1\DR1\Partition1
15:23:08.0277 6884  \Device\Harddisk1\DR1\Partition1 - ok
15:23:08.0307 6884  [ E32B41B60CF232DA5D74F942149064B2 ] \Device\Harddisk6\DR6\Partition1
15:23:08.0309 6884  \Device\Harddisk6\DR6\Partition1 - ok
15:23:08.0316 6884  [ 1AA05D140F21352505C2FEBA8ACC41E8 ] \Device\Harddisk8\DR10\Partition1
15:23:08.0318 6884  \Device\Harddisk8\DR10\Partition1 - ok
15:23:08.0319 6884  ============================================================
15:23:08.0319 6884  Scan finished
15:23:08.0319 6884  ============================================================
15:23:08.0330 9676  Detected object count: 0
15:23:08.0330 9676  Actual detected object count: 0
15:25:43.0024 1984  Deinitialize success
 

 

 

Malwarebytes results:

 

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.05.22.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16576
Rob :: ROB-PC [administrator]

Protection: Enabled

5/22/2013 3:33:57 PM
mbam-log-2013-05-22 (15-33-57).txt

Scan type: Full scan (C:\|D:\|J:\|K:\|L:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 403420
Time elapsed: 37 minute(s), 33 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 25
HKCR\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Quarantined and deleted successfully.
HKCR\funmoods.funmoodsHlpr.1 (PUP.FunMoods) -> Quarantined and deleted successfully.
HKCR\funmoods.funmoodsHlpr (PUP.FunMoods) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.FunMoods) -> Quarantined and deleted successfully.
HKCR\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\escort.escortIEPane.1 (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\escort.escortIEPane (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\funmoods.dskBnd.1 (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\funmoods.dskBnd (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\funmoodsApp.appCore.1 (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\funmoodsApp.appCore (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\f (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\Typelib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCR\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191} (PUP.Funmoods) -> Quarantined and deleted successfully.
HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Data: Funmoods Toolbar -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Funmoods) -> Data:  -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 4
C:\Users\Rob\AppData\LocalLow\Funmoods (PUP.FunMoods) -> Quarantined and deleted successfully.
C:\Users\Rob\AppData\LocalLow\Funmoods\Funmoods (PUP.FunMoods) -> Quarantined and deleted successfully.
C:\Users\Rob\AppData\LocalLow\Funmoods\Funmoods\us (PUP.FunMoods) -> Quarantined and deleted successfully.
C:\Users\Rob\AppData\LocalLow\Funmoods\Funmoods\us\20101003 (PUP.FunMoods) -> Quarantined and deleted successfully.

Files Detected: 9
C:\Users\Rob\AppData\Local\Temp\is1070216317\Giant-Savings.exe (PUP.GamePlayLabs) -> Quarantined and deleted successfully.
J:\On Hold\Full\Film images\Audiobooks\DVDFab.v8.1.6.1.Qt.WinALL.Cracked-BRD\DVDFab.v8.1.6.1.Qt.WinALL.Cracked-BRD.rar (Riskware.Tool.CK) -> Quarantined and deleted successfully.
J:\On Hold\Full\Film images\Audiobooks\DVDFab.v8.1.6.1.Qt.WinALL.Cracked-BRD\Crack\Patch.exe (Riskware.Tool.CK) -> Quarantined and deleted successfully.
C:\Users\Rob\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage (PUP.Funmoods) -> Quarantined and deleted successfully.
C:\Users\Rob\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage (PUP.Funmoods) -> Quarantined and deleted successfully.
C:\Users\Rob\AppData\Local\funmoods.crx (PUP.Funmoods) -> Quarantined and deleted successfully.
C:\Users\Rob\Local Settings\Application Data\funmoods.crx (PUP.Funmoods) -> Quarantined and deleted successfully.
C:\Users\Rob\AppData\LocalLow\Funmoods\Funmoods\us\20101003\kywrds.tat (PUP.FunMoods) -> Quarantined and deleted successfully.
C:\Users\Rob\AppData\LocalLow\Funmoods\Funmoods\us\20101003\kywrds.ttr (PUP.FunMoods) -> Quarantined and deleted successfully.

(end)
 

 

 

ESET results:

 

C:\Users\Rob\AppData\Local\Temp\sabFi5je.exe.part    Win32/Adware.1ClickDownload.AA application    cleaned by deleting - quarantined
C:\Users\Rob\Downloads\Extreme_Flash_Player_Setup.exe    a variant of Win32/Adware.iBryte.G application    cleaned by deleting - quarantined
 

  That is all I have got as of now.  I can't tell if it did any good yet.



#4 Jimbob85

Jimbob85

  • Members
  • 308 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:VA, USA
  • Local time:09:23 AM

Posted 22 May 2013 - 08:22 PM

I have a few thought from here.  I would suggest a restart and see how things are running.  Your firefox (aka FF) is due for an update, this will happen while FF is open for a bit, unless you have changed this setting.  Lets also run another scan and see what we find.

 

Please Download SAS (SuperAntiSpyware)

Allow it to update
Select complete scan
Select Scan your Computer...
Select your main drive (usually c:\) Uncheck other drives
Select Start Complete Scan>
Post the results
 



#5 hairyelf

hairyelf
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:23 AM

Posted 22 May 2013 - 10:13 PM

First of all, I restarted completely after making sure firefox had updated to version 21.0  and then did the SAS Scan and here are the results

 

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/22/2013 at 10:07 PM

Application Version : 5.6.1020

Core Rules Database Version : 10438
Trace Rules Database Version: 8250

Scan type       : Complete Scan
Total Scan Time : 00:32:15

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned      : 646
Memory threats detected   : 0
Registry items scanned    : 71189
Registry threats detected : 0
File items scanned        : 54782
File threats detected     : 52

Adware.Tracking Cookie
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\9WFKHJAR.txt [ /ad.yieldmanager.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\0R3I5IXY.txt [ /mmstat.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\TVAIOF4D.txt [ /serving-sys.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\2VOKC9SD.txt [ /eyeviewads.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\C8Z1GL9S.txt [ /cnzz.mmstat.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\74Y9LT2T.txt [ /media6degrees.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\R2N30FMD.txt [ /fastclick.net ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\IVD5C3PN.txt [ /questionmarket.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\3UPD3ITK.txt [ /2o7.net ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\3EV4J0DQ.txt [ /collective-media.net ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\UN2PPMX2.txt [ /invitemedia.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\5JJHCMN1.txt [ /www.pornbb.org ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\O3AACM19.txt [ /revsci.net ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\V3IGMTUP.txt [ /legolas-media.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\27MZQLK9.txt [ /doubleclick.net ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\EQCYDSH6.txt [ /atdmt.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\P26CJOXG.txt [ /imrworldwide.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\FW8RZHNN.txt [ /interclick.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\8OFDZXNP.txt [ /specificclick.net ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\YJOJGN33.txt [ /adserver.adtechus.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\DQG5HERC.txt [ /casalemedia.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\S3AWLOYM.txt [ /insightexpressai.com ]
    C:\Users\Rob\AppData\Roaming\Microsoft\Windows\Cookies\NCOMSD2N.txt [ /ru4.com ]
    assets.porn.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    cdn.complexmedianetwork.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    cdn.tremormedia.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    cdn3b.static.hardsextube.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    core.insightexpressai.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    downloads-blaze.oberon-media.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    bleepedhard18.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    ia.media-imdb.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    ictv-ic-ec.indieclicktv.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    media.heavy.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    media.mtvnservices.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    media.oprah.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    media.spinmediavideo.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    media1.break.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    media5.break.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    msnbcmedia.msn.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    s0.2mdn.net [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    secure-uk.imrworldwide.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    secure-us.imrworldwide.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    static.discoverymedia.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    video.unrulymedia.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    www.girlsdoporn.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    www.lottoelite.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    www.sexpillguru.com [ C:\USERS\ROB\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\PDTGYKF4 ]
    C:\USERS\ROB\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ROB@ADSERVER.ADTECHUS[1].TXT [ /ADSERVER.ADTECHUS ]
    C:\USERS\ROB\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ROB@CISCO.112.2O7[1].TXT [ /CISCO.112.2O7 ]
    C:\USERS\ROB\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ROB@KONTERA[1].TXT [ /KONTERA ]
    C:\USERS\ROB\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ROB@STATSE.WEBTRENDSLIVE[2].TXT [ /STATSE.WEBTRENDSLIVE ]
    C:\USERS\ROB\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\ROB@WWW.GOOGLEADSERVICES[1].TXT [ /WWW.GOOGLEADSERVICES ]
 

 

 

 

  I told it to remove the threats which it said were all tracking cookies, and I have had the random pop up still show up since.  I hope to here more soon.  Thank you for helping me.



#6 Jimbob85

Jimbob85

  • Members
  • 308 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:VA, USA
  • Local time:09:23 AM

Posted 23 May 2013 - 07:46 AM

The log from SAS only got rid of tracking cookies which are very low as far as risk.  I have a feeling that there may be some adware or junkware still hiding from us so lets try a few more scans and see if they will clear up your pop ups.

 

Please run

    http://www.bleepingcomputer.com/download/junkware-removal-tool/

    http://www.bleepingcomputer.com/download/adwcleaner/

    http://www.bleepingcomputer.com/download/tfc/

 

The above links should explain how to use these tools but if you have any questions please ask.  With adwcleaner please just do a scan and post the report and I will look at it before you preform the delete to get rid of anything to avoid removing anything that you may want to keep.  With TFC it will empty your recycle bin so make sure that everything in there is actually trash as some people think that this is another storage location, which it isn't.  As always if you have any questions please ask!


Edited by Jimbob85, 23 May 2013 - 07:47 AM.


#7 hairyelf

hairyelf
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:23 AM

Posted 23 May 2013 - 01:20 PM

Here is the log from Junk Removal Tool:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Rob on Thu 05/23/2013 at 12:00:28.15
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\best buy pc app
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-62666156-433308899-3944770286-1000\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\pc optimizer pro
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escort.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escortapp.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escorteng.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escortlbr.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\viprotocol.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\viprotocol
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\s
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\funmoodssetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\funmoodssetup_rasmancs
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}



~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll
Successfully deleted: [File] "C:\users\default user\start menu\programs\startup\best buy pc app.lnk"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\best buy pc app"
Successfully deleted: [Folder] "C:\ProgramData\big fish games"
Successfully deleted: [Folder] "C:\ProgramData\pc optimizer pro"
Successfully deleted: [Folder] "C:\ProgramData\splashtop"
Successfully deleted: [Folder] "C:\Users\Rob\appdata\local\splashtop"
Successfully deleted: [Folder] "C:\Program Files (x86)\gamesbar"
Failed to delete: [Folder] "C:\Program Files (x86)\splashtop"
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{004C8987-62E9-465A-9B37-79F449FCC3A0}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{018A768E-6820-4855-9DE6-15637967658D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{02473E1A-5988-4E9D-92DA-F9F3F4B7A226}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{03E8FCC0-FA52-464F-9676-FBB132A84710}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0563F079-1155-47CC-AE22-ECC7EDE20AE9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0571A847-381D-4730-89CE-E660D46DA49B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{05877FB0-CC8F-4A11-B02E-3599BD8FA69B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{05BB7195-271F-4328-BB88-560E408AE626}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{05CA79BA-DA89-4FAC-B1D3-D09EB44692CD}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{06B360E5-31AA-45B8-B783-3A637E5B5973}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{06DE8E6D-5940-4778-8CE6-73D6AB2471D2}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0711CB2F-CD04-4A2E-BFAD-5A454DF213DD}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{07DB37AB-B7B8-4DE8-957A-C7240592C763}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{088FA081-B71E-4981-AE6A-6DB038AA2333}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{089E085E-518B-4320-890D-1C0A9594E019}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{08E144DF-DD58-43CF-AE61-63EBEC14EDCA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{090386D2-550D-43D5-BE27-544A443B92B8}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0A099989-EE4B-4821-9F89-333A8DB4FBB8}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0A1674D3-DA26-4148-8666-65E4F29D4CBC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0A7A4923-955B-4789-95D3-60F02C16FD79}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0BD26F1A-A361-44FE-8604-7DB0358D4FB5}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0C5C383A-8719-40F4-8E3C-5CB34F778FEC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0C6A0190-0900-4C3D-BBFC-B5244A1E966E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0D740D68-3652-4C69-9503-5078C2E3D69C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0D9D5E2B-DE05-43D3-B434-813BBBD39627}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0E01A054-585F-4F4E-A5C7-760124EB22C1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0E82432C-1DCA-4769-A6B2-C1D8288568E9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0E82CFD3-2985-492F-B69C-966F2C34DFBC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0E93AA75-4C1B-4109-9CE2-01394A5C7616}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{0F088C5F-21D6-4539-BE46-A9873B3968F7}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{10E22FB1-E822-47D2-B5F1-C4CB364BDAF7}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{114A79EF-8A00-4432-8984-2A5F14D0701E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{14CDB084-A0D5-4C8C-AC00-3F81A8E9C6AE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{15B7B30E-8C4C-47A5-97F6-03D730F1D936}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{17D64416-A4B1-4D5E-AC15-4A310609752D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{18B54D38-994A-429C-A055-EDC080D8A4C7}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{18C52E5C-981F-44A0-80BD-5F7BE8EFCF38}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{1C276188-467B-4A10-AE8F-C2CFD35A93AC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{1E9E348E-F5E7-461A-98DB-345E7BF6C2DD}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{1EF40286-6936-4E13-90BD-1711CA124F58}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{20540841-CD0A-4B62-A1E8-F378BFBAE3B4}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{20709402-66EF-464E-ADC1-D118A8730F00}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{20A11042-7563-4A9E-8618-9AF50A163B01}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{20D237AF-0463-4245-8729-65EA4DC64062}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2119CCB3-7894-4A36-918F-77A586FC5DDC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{21342AA0-39AC-4871-8A6A-4FD667FFDAEF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2236C707-EDEB-4BFC-B432-EB3D2841F96A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{22664879-3694-4D21-A345-9A04C229E292}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{23318DCD-16BC-4185-9393-A5A83B09F126}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{23BE18C8-048A-4CB9-991D-48FABD0156C9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2812AFBD-ADE1-420F-B8D5-FA3A0619307F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{29258375-8705-419B-9270-507D50BE7CDE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2A21A2A1-62A0-4B8C-95DA-B788F4164D1F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2CA6A81D-3BEE-4898-8BC1-50F16C9A2623}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2CD06BCD-A805-4D37-878F-C5189FED0D17}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2DCA39B4-C4DD-4514-946F-0415AF702688}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2DFA7674-6E5C-4568-926C-0738F8623743}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{2E862D0A-CCFD-44ED-9CFC-982E3FC8C87B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{304F0CEF-CE2F-4B32-86AF-AF2555AEB75D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{307D1BF7-9C6B-4495-926E-055863B81650}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{30A3FFA6-6DED-44C6-8F2F-FE985915A1F4}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{30BFB376-2CF0-43E7-9413-A18E478E9081}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{318019B6-4C11-4335-82B9-15AF1D5F5F5A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3469A711-E32C-4613-925F-D564BAB11196}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3542CAE1-2FE2-49AF-A664-B32D2F83F339}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3577165B-FB16-489A-87CE-A9FF3EDB8466}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{366AC72A-E983-4383-B230-934FE9AE7E23}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{36B74FC9-B94C-4ADD-BD65-7A6B50945487}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3751DE9A-CB63-4FE0-B4EF-A999FE11C7E9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3A329416-3116-4CCD-AEB2-7F98779019F3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3A64F9DE-14E8-4639-AF09-7A7FA938F367}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3A764F16-46C7-4F4F-BD26-90EE95772A76}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3B1FB900-3E5C-45FD-BB66-CF5B64B1F6BA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3BA59173-612F-450F-A6C6-F0D439BCD79D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3BB308C8-5820-4416-B8D3-70F1B8533BA6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3D2A6A53-D4E5-4592-B45C-234BE1735A93}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3E17D96A-AA3D-42FC-817C-0ADDA99D2CA1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3F77BE22-813D-419C-ADB8-D5D3AE10B36F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{3FAEFC1D-907C-4C34-B289-68E57EE7E39E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{420D3998-2255-4D6F-8465-CFC210DD3698}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{42C145F2-4871-44DA-8B79-BDF76575AC78}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{43E1B1CF-D994-4EDF-B193-A667C0311CC9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{450F1A9C-F954-4C22-8477-D8019E2B2E69}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4664296B-C090-4B5F-A2B5-2E7452458F5D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{46C83BFD-5D56-4777-83AA-AE61EC1E8D4F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{483504A6-53F5-4D06-8D95-FD79AB95C9FE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{48864EC1-310B-4199-969C-48A6F6FC973E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{48BF5A12-0591-4D67-B5F8-0FDCDE642FF6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{492D883B-EE15-4363-A396-CEE646479576}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{49A112B2-58F2-437C-8118-4F430EE644D6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4A775924-EC6D-4D90-87EF-3AC926954C26}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4B19C735-C03B-450F-946C-393FF4490056}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4B8F1CE1-B100-4A71-A22D-557E33CD2D56}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4BAE9BF8-F678-4EFC-95F3-F85967598FE6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4C15C8C1-2B70-4DA3-B56D-00DBADC76C4B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4D7B4DE4-00C1-4493-AC38-2F93B1BC11C3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4D8BF3D0-1BD8-41F2-9D1C-C710B1C50382}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4DA4A048-2143-4997-B629-A80D238737B6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4E0A29D7-CE86-4635-8EE1-7D13C7270BAA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{4F52E280-5F50-4B5B-AC4F-A35E2364EAC9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5042B749-A699-4DB1-B33B-B0E6A7113F1C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{50B00E09-AA16-44AE-A7E8-F97FD8AAD0BA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{50BCB309-D2E2-4938-9E20-AA5DBE61B6D6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{51E2F97A-16A6-42CC-8F3C-99CAD5AD279A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{51FA1056-8B70-4AAA-8B1F-07582C3E0A96}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{522F466E-F804-4C19-9279-9A5903EED803}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{534E647B-76E7-4275-9311-BE4320207503}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{553E24A0-912D-477D-A2C6-80F08C7496AE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5611C89D-15A7-432B-BBBB-6419EDB3FC66}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{57B8EDCA-B725-4E9D-A0B6-1C0187B93AD1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{59EA33E9-B391-4EBA-8199-C287B2196F3B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5A69E6B3-EC54-40D0-8BEC-C763EBAD98ED}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5ABD41D1-068C-420A-94A1-DCA446266F4B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5B810121-71D5-403C-B1B4-00E2508B8968}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5CBFE6B4-0DDD-4E38-A13A-9268AF534D1C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5CC2B01E-8BDA-4143-9229-55BF963B7A0D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5E490BE9-EB7E-4BA3-A9BE-FF4D28E44B9E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5ECE7426-88A5-497E-805E-5BA64FD7D387}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5F26808B-0F20-42A1-9412-E32150403B22}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5F63D0A7-8AD5-49B0-B50A-E134E6577780}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{5FE6F833-04EF-4740-9648-DD4616D0913F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{601C037C-AF35-4538-AEAE-1A2BC973B232}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6119D96F-851B-4852-B71F-08B0E2AC7BF6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{61B444B0-B458-45FC-94F3-162A4BD900A2}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{61E06E17-3573-49F0-A99F-B0E36DED4048}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{62113E7B-1581-4103-BB25-7EC8E704F694}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6238C1BC-5263-4EF9-82BE-3A2AC8796FFE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{62FD44D9-B123-4B45-87A1-BA73E7C873BE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{635C3431-2F6A-43D7-B975-B02C5BE87BBF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{648D0548-C603-44DB-8583-E3031EAFE606}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{66A1C099-0A64-4319-A4D9-FC2B59745D66}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6797FBFA-86B2-4E6E-86CD-38E8267FF42C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{67ABF095-2B74-4609-92EE-C67F8ED46306}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{67AF4549-40F4-4873-AE7E-6C7735C1BAD2}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{689C4F4C-A8D5-4BCC-9917-BDA295B1F0C1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6A547172-8E46-42C6-A70D-5037B81AB336}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6A718028-D7BE-4912-B0C2-02F043F9D293}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6AC7B3EB-1135-46A4-8974-8C12998BF00B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6B470431-9515-4B42-8E5F-030BA93BCB15}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6B987ACB-A49E-4BC1-A5B3-F83D5397B18E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6C15F2E6-2C24-438A-966E-F57CF4A46832}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6D527B58-F751-466C-B403-F94DA6BA54A0}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6E13A2CF-8068-40CB-A30B-BB5AAFE5FA09}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{6E498443-3599-4D9D-8E6F-78824913196D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{71F28A51-74E3-413B-8773-CA0B2623AA79}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{72909FA9-DBD9-419C-8FD7-4563E1ED0334}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{73AABF86-EF50-4811-A011-2988D05524D7}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{75700F8A-E35D-41BF-9C32-7B9D31D5833F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{75FED84B-4308-4901-B2E3-09DBA899CCD7}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{763B0C5B-4096-4590-9D72-FDCCC8C4A66F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7659AA42-0A50-4684-8BC7-E706B3FA0525}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{76D926D1-8107-4461-91E1-B90591E4F6D1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{772445E4-B336-4B51-B731-0D623502FB74}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{778022D1-75B8-4AED-B32E-098DE6B3DFED}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{77F1A103-257F-4B0F-A0AC-4DF74B24D1D8}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{79B8DAA5-6372-4409-BB24-1DE7EAE8E9F4}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7A66586A-F522-4182-9184-76CDEDA5A7AD}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7A8B03D1-B983-4526-9184-127E051F7AF9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7A9145F2-8D29-4C5B-BB6D-A3DE629B4709}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7CE117DF-1939-4C15-808A-8840978FAEF5}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7E345293-0300-4A9D-B98F-DC6C008225EB}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7E4BE8F4-F1E0-443C-B558-D9AFE11DE0EE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7E5B36A6-B350-416C-9586-0F60484CCD6A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{7F12F596-F42E-4462-8459-748FAB2B6496}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{80AD8F9C-D08C-4454-A193-C71B18756B84}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{810576A3-5014-42FD-83A0-FA73B85BEFC5}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{839ACD24-F3A8-4B24-A4AC-FD548AA66528}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{84773C71-9CF7-4949-B903-14D65EA74BF0}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8546C3E2-9A03-4DF8-84D0-55C1C37B0D2C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{85D1347C-6A9F-4FF0-9097-9CCD857EA52C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{85FD65B8-BCFD-4EEE-A7A4-93DF4B3CA89A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{864E819D-77FF-4B84-96D5-D29600DA7226}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{870845FD-E7F5-458F-97BB-45A510CF9541}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8744134E-43B5-48AD-AF08-7E08D9A0786A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{893DB99C-6D8B-4FAF-9F50-8564E430D12C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8B3D00C2-13CC-498A-90DC-71CC7BA7A2FB}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8B63520F-F6E4-4457-88C9-3667A09A274B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8C31E147-1ADA-4007-8C18-261A36A6D14C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8C5AFB46-2D65-4D3F-AE7D-F566DF391607}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8CAD30AF-702F-4D19-A558-79C2BF68295A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8E02D842-A346-4F28-BF03-82A533292A83}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8E7A3401-662D-409D-B6C9-4933481BC12A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8ECEBA55-CBC0-47C6-B302-CC0186F197A0}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{8FDD284D-80FA-4F7C-B5CC-EFC2EFFF727A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{90533870-58CD-40E6-9DE5-E29EDC265B73}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{908F994F-E00C-4FB2-91D3-31A147D87BC4}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{90D3B6CB-C470-4410-A8C3-18FF377DB77E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{914C2A33-FC1D-4B15-B930-41E1773F5312}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{921DB9C0-39B9-46DE-9D60-628CC131951B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{925381F7-04C7-4790-ADDD-F4CE1A382963}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{939C3DBF-3826-41A0-9E04-C1E196B3267C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{94341E9C-29E4-4644-B72E-3B21265E17DF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{943677EA-792E-4D97-B27C-0FE33D1D1ACC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{9444E6C8-BA8C-448C-9202-2D5BC76A0162}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{953D1DD0-6CF5-4394-885B-F1F54B537F3E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{95A7B918-1ADC-48E3-BB78-ADF68C89D06F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{96A35DFE-7425-4753-9FA0-3C9A556C4322}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{973E826F-DB94-453B-BB2B-A7ED4F8FAE5F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{97C9A21D-03F9-4934-A4AD-847264F6AD9B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{97DC8730-26FC-4512-8A56-45A339F45FA3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{980E573C-E2D2-4E30-A155-A40DCA2FFD39}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{9869A799-B348-4CAD-980E-BF5DB58C5CC6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{99FFD7D9-C616-4773-9E77-47307C5D2043}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{9AF91757-B863-4934-8716-810B268FC6E4}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{9B06AF69-E936-4973-B646-87FB13D9E992}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{9B8E9E89-D591-4DC3-BB56-9A869302A13C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{9F130C6A-5B8C-45C9-AF14-E29147878FD9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{9FAACC0F-EA05-43FD-A4A6-16BDC93654A6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A013CFAD-858D-4ABE-BA05-4D2C2F55435D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A05276DE-FDCD-40CE-A1A4-320EE9EDE4E9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A06D8FA2-CF29-4B42-92DE-B7D9918FE5C0}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A0BE02BF-1C24-430C-8E85-79D931052A2B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A18AE402-0000-4932-800C-6FE76A71B992}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A19E6135-CA05-4EEB-A760-70AC4B9AFD9B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A339C313-500E-4486-B033-5075845450A8}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A33C59E1-54C9-4D90-92AD-8D02985A900B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A4815DC6-6E21-414E-9D17-61DF8D7331AD}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A4919726-0992-448C-93C5-6CD0F1377F9A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A4EE7365-02AE-45BF-9C88-48C5B922A2CF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A55A43D9-36CC-46A4-BAF3-427DA2F1CE4D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A587C6F8-7059-4BB7-A59A-DB6C0FCFC0F3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A766FDE4-1FE6-453B-A88F-3699CA508B2E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A7EA09CA-C727-4DEB-80F2-7E0E7CF4E80F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A8D75BF7-67E4-46EF-B5A0-E4A878DD57B7}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{A8E335FF-63F4-4B20-98CF-56E3161EEEC1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AA1BCE77-F8F8-4889-AB96-314823DA30DA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AB39EBA0-4366-4F0C-A383-B0C41128D31E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AB5E6340-B45B-4832-9771-38CF9C8A5DFA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AB8C5E1E-0F79-4D3F-8BD8-91BA816D1E02}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{ABA90823-567C-495B-A32E-AC08E4B05D3D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AC59DF8F-96AD-454B-9BF2-4668962D7F95}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AC5D8875-E069-42D8-962B-A5BF935273F5}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AC803215-9808-4A77-B83A-1CA43CB7D302}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{ADF980B9-B244-40C7-8380-FF9DCE574A57}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AEA515DD-0DE0-40A4-9BFA-40DE2FF887C3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{AF1B636D-58B6-48B8-8FC1-5F5A0F0793EB}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B05CEC0C-933E-4964-A037-7B1DBEB65554}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B0942391-598E-40B0-AD40-70CCD48AED87}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B0CBE6B0-6052-47F5-85B3-7B04B0B426C9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B18D0A6A-17D4-4147-B0A8-0E00999F00EF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B1B7D76A-FA1E-4AAE-8B89-48346F211BA1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B1B8C67F-85F1-4F51-838F-0B9A8147F74F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B1E1177E-58CA-4E5E-B467-4AC49151B813}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B288683A-B271-4C6D-86D5-ABA75ED841A7}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B2C47B4F-C7DE-4A88-A509-06557A43388A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B3AECE82-21D2-42E2-B1E6-381791D944EE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B3EE2077-F8B1-4462-A466-1E9312FE12F1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B4672C72-1AE7-480A-A01E-6FA20D1368BF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B5252658-3623-437F-B123-4C5E55A57DC4}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B69E5731-2110-43D3-AD27-7C1A681DA252}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B79A5ADB-77A9-48C3-A74B-C4A9D6980BEA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B7DBB266-3E9F-4BED-980A-1DA3BE540518}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B87F77B4-C629-42AD-AD12-63C006F61DBC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B978BD32-FF0F-45E8-8D7D-87EAE2A9DC43}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{B9C0BC34-E3FF-4C6B-A806-C70EE0B3BECC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{BB9A8F61-1643-4E5A-AB11-DF839C53AC22}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{BBB84D4B-887A-41A6-A0FA-4E8EB073328A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{BC77F9A3-B2AB-49A5-BB81-0540FD89E50B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{BF599EB4-D58C-4FE7-9630-B47E8B9F91E5}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{BFCA4B2D-45DD-4B42-9DA9-02E81F323A2D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{BFCBD4F7-45EF-4DEC-A51B-00AB9D66F287}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C08CD2A3-615C-4F60-9086-5B4EDB4C5663}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C0DDF88E-0456-4906-BFCD-F96BC8769FC9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C16D614F-4DB7-40EC-9403-66613A0E5990}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C36DCF86-AB28-4059-93C2-D6855FB055E1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C3E4D1BB-70DE-429C-B87C-7610F39C7AAB}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C4257D25-640D-4D05-BDBC-15F05D543BA6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C4A38BF6-C3B6-4EC8-9EE2-BBA7F0DF522F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C4F3D110-3702-4676-A9F1-43DCF14E922E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C5E1C3ED-B47F-4454-8CF9-85806DA5C321}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C6A484EB-9A33-42A2-ADBC-911F85EC593A}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C92B7207-7646-43DE-994C-1FA9A9E629EF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{C9C6A0CA-C1A6-4247-AC70-F9FDE1CCD33B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{CB7EB7FB-855E-4E33-BF03-9724D38BC199}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{CBD03719-3756-49D1-92B6-42C6B3A4FA2C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{CCCE4B22-0350-4025-8F94-0F4A0DE34C71}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{CD167829-7701-4D87-A52A-81ACAACF265C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{CEABD420-EEDD-49A5-9FC2-4A64D7AFD06F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D1024CE5-4775-4D0F-AC2D-209D80E4674C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D37049B6-6ACC-4B00-9481-787DB66C2D30}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D3E9A374-6BDD-435E-A99B-4374C045C551}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D3F52C14-8C3F-4C0E-93CF-A42A6C23BF7F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D44ADA01-828B-4C10-9489-016CA297D3C9}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D44E7CD1-CF20-46CC-95B7-ADBEB0F681A3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D4BA05B3-36C0-4510-83BD-E4C338513E18}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D4BF8147-06C3-4A32-8F97-1FBD7778FBC8}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D58B67E3-9E26-410B-AC99-44D4EAAADFC0}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D5C0840E-0655-4C64-B268-FBF65EED2F20}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D6BAEAA6-AF13-4063-A4A7-DE25FD4FBD16}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D6ECCFB5-6453-497B-9050-F7A906971335}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D83D05E8-CB55-4FD1-9038-A4C01FAC134B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D85CF08B-19C6-4953-B161-423B512899A8}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D8960F3C-0FE7-432B-B86B-D79E6B05B8BA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D8C7C327-3BA2-415C-BF48-4DE135012291}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{D9C1247C-9D60-45F2-B809-9E8251D43DAE}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{DACAC429-9A7C-4B8C-A112-DAFD6E348282}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{DAE96A6E-06CC-4134-A322-80888682D33C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{DC29E146-E2DA-4722-A769-8E5B4FC892FD}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{DD0B206F-8788-43AF-B88D-6B53CE0D7825}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{DE122622-BE11-4ECA-BF91-3EE2BCD6325B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{DE38EF8C-C138-4221-8E89-A5714C68330D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E0103868-C45D-4F44-9CD7-1EA4D8BCFF6D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E11114E7-988F-4311-B6DD-335DC68F71BF}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E1332B90-3B31-400A-AFED-79C5544EFEA3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E1AFAA72-2C1C-47EB-A787-69FE63635930}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E2ECFE45-8960-4AB9-A4D9-42EBD2DDBF85}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E3FE8EBF-7EF0-437B-9B20-ABDE3ED21BCC}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E4A8F421-242E-4FEF-86E2-8F364B40979B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E4C800A9-E8B8-4A88-B283-E424E46098F6}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E54C113C-C4AA-4208-B668-5277C83B186D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E5965FC1-3B7E-4D9F-ACC6-C9E368B12813}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E5DE828C-32D7-4D0F-B3CC-BB0E51047022}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E823533C-E687-476E-81EF-98422F027E4B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E84BEB29-510D-48E7-A45F-E84DE29E0CA1}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E8F2B320-678E-4E18-AA5F-30E09042EF6B}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E9666966-40F9-4641-B20B-311DCA936AF3}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{E9E2BBC0-63FE-4F40-9043-1B9F0963863E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{EAFEDC4C-11EF-4C2F-A91F-1DF3905FC17E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{ECFFBDA3-06EB-4929-A9D3-7608D7F8D199}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{EF01F495-1A07-414F-9B49-33BC99ABA49D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F033218E-7019-4FDB-AE2D-02616E766134}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F115B33D-2077-4FBA-9931-5EFF93F8F694}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F14E7FC5-25AE-424E-AA4A-32A180613C4D}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F319E181-9C86-4608-8C92-76958B16C09C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F37B368D-45F1-4EA4-B22E-D57574F4BC8C}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F38BFB67-72FD-4150-A687-23FAA3CAE081}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F3E405BD-B25C-4C29-9A61-0DD8ABA14486}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F58CC024-609B-4288-9480-626CCCCD0B8E}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F7A7AC43-D606-4F69-B33C-B42CBEA3C8AA}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F94A7D08-E001-4288-A12D-342C8959C93F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F955D0CB-460C-42AF-BCD4-0D66D4418122}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{F975971E-558A-4F3B-A776-417257E084CB}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{FA5A5FB2-35D6-46E2-99B9-13824F12F818}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{FADDE1DD-B5AA-4B5A-AC9B-1449218FD61F}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{FB46FCA9-4850-46C4-8C89-142D6CAD6001}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{FCA606D7-0259-412C-AAF9-56B0E8F26A84}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{FEFAC08E-72B3-462C-B971-D0A0EA906436}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{FF517D5A-521E-47B3-9D85-6122FAF06AFD}
Successfully deleted: [Empty Folder] C:\Users\Rob\appdata\local\{FFC1C61D-4455-424C-8F97-65084C8328E8}



~~~ FireFox

Successfully deleted: [File] C:\Users\Rob\AppData\Roaming\mozilla\firefox\profiles\8q3n4szb.default\user.js
Successfully deleted the following from C:\Users\Rob\AppData\Roaming\mozilla\firefox\profiles\8q3n4szb.default\prefs.js

user_pref("extensions.funmoods.aflt", "adknlg");
user_pref("extensions.funmoods.autoRvrt", false);
user_pref("extensions.funmoods.dfltLng", "");
user_pref("extensions.funmoods.dfltSrch", false);
user_pref("extensions.funmoods.dnsErr", true);
user_pref("extensions.funmoods.envrmnt", "production");
user_pref("extensions.funmoods.excTlbr", false);
user_pref("extensions.funmoods.hmpg", false);
user_pref("extensions.funmoods.hmpgUrl", "hxxp://start.funmoods.com/?f=1&a=adknlg&chnl=adknlg&cd=2XzuyEtN2Y1L1QzuyCzzyB0FyByE0F0A0CtC0DyBzyzyzyzztN0D0Tzu0CtByEtBtN1L2XzutBtFtC
user_pref("extensions.funmoods.id", "687F74FAC1D79998");
user_pref("extensions.funmoods.instlDay", "15582");
user_pref("extensions.funmoods.instlRef", "adknlg");
user_pref("extensions.funmoods.isdcmntcmplt", true);
user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
user_pref("extensions.funmoods.newTabUrl", "hxxp://start.funmoods.com/?f=2&a=adknlg&chnl=adknlg&cd=2XzuyEtN2Y1L1QzuyCzzyB0FyByE0F0A0CtC0DyBzyzyzyzztN0D0Tzu0CtByEtBtN1L2XzutBtF
user_pref("extensions.funmoods.prdct", "funmoods");
user_pref("extensions.funmoods.prtnrId", "funmoods");
user_pref("extensions.funmoods.srchPrvdr", "Search");
user_pref("extensions.funmoods.tlbrId", "base");
user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://start.funmoods.com/?f=3&a=adknlg&chnl=adknlg&cd=2XzuyEtN2Y1L1QzuyCzzyB0FyByE0F0A0CtC0DyBzyzyzyzztN0D0Tzu0CtByEtBtN1L2XzutB
user_pref("extensions.funmoods.vrsn", "1.5.23.22");
user_pref("extensions.funmoods.vrsni", "1.5.23.22");
user_pref("extensions.funmoods_i.newTab", false);
user_pref("extensions.funmoods_i.smplGrp", "none");
user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.221:28:35");
Emptied folder: C:\Users\Rob\AppData\Roaming\mozilla\firefox\profiles\8q3n4szb.default\minidumps [361 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 05/23/2013 at 12:04:21.22
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

Here is the log from ADW:

 

# AdwCleaner v2.301 - Logfile created 05/23/2013 at 12:29:13
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Rob - ROB-PC
# Boot Mode : Normal
# Running from : C:\Users\Rob\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Found : C:\Program Files (x86)\AVG Secure Search
Folder Found : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Found : C:\ProgramData\APN
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\Users\Rob\AppData\Local\AVG Secure Search
Folder Found : C:\Users\Rob\AppData\Local\Temp\avg@toolbar
Folder Found : C:\Users\Rob\AppData\Local\Temp\TempDir
Folder Found : C:\Users\Rob\AppData\LocalLow\AVG Secure Search

***** [Registry] *****

Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Found : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Found : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Found : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Rob\AppData\Roaming\Mozilla\Firefox\Profiles\8q3n4szb.default\prefs.js

Found : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\FireFoxExt\\15.2.0.5");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Rob\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [8359 octets] - [23/05/2013 12:29:13]

########## EOF - C:\AdwCleaner[R1].txt - [8419 octets] ##########
 

 

 

I also have run the temp file cleaner, but I am still having issues.  It seems like pop up and fewer and farther between now, but still have the video advertisements in bottom right of browser.  I got a snapshot of one.  The highlighted words/links that shouldn't be highlighted are still there and when you mouse over a little ad which says "toparcadehits" in the bottom right of the little ad shows up.  I don't know if that helps at all or not.  The words "web pages" in my first post here are now blue and show an ad for web.com when I mouse over it.



#8 Jimbob85

Jimbob85

  • Members
  • 308 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:VA, USA
  • Local time:09:23 AM

Posted 23 May 2013 - 02:01 PM

Go ahead and run a Delete with AdwCleaner.  You will lose your AVG search toolbar but if you would like I can suggest a replacement for that.

 

I am going to try to PM you link, as I can't post it here, see if this is what you may have.  I would suggest that if it is you use step #2.  I would not suggest the use of CCleaner unless you follow the steps exactly and do not use it EVER to make registry changes.  Making registry changes to a pc can cause more harm than good.

 

Let me know how all of this goes.  Oh, AdwCleaner will very likely restart your pc.


Edited by Jimbob85, 23 May 2013 - 02:03 PM.


#9 hairyelf

hairyelf
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:23 AM

Posted 23 May 2013 - 03:33 PM

  I'm not sure which one actually did it, but I both deleted the items in adwcleaner and also went and uninstalled toparcadehits, but I'm not having the problems anymore.  I want to thank you for the help you have given.



#10 Jimbob85

Jimbob85

  • Members
  • 308 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:VA, USA
  • Local time:09:23 AM

Posted 23 May 2013 - 04:27 PM

You are more than welcome!!  Please let me know if I can further assist you with anything.

 

You can now do some house keeping:

    -  You and just delete the following from your pc:  Tdsskiller, JRT, and AdwCleaner

    -  You may keep the following to use to keep things clean and tidy:  SAS, and TFC

    -  You can keep MBAM as a free program or you can buy it, one time fee for home use (not a yearly fee), $24.95.  The paid version will run all of the time to keep malware off of your pc.

 

Please let me know if you have any more questions or concerns.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users