Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Chrome redirect to "www.search.conduit.com"..notebook infected?


  • Please log in to reply
6 replies to this topic

#1 nabu

nabu

  • Members
  • 110 posts
  • OFFLINE
  •  
  • Local time:08:10 PM

Posted 12 June 2013 - 06:21 AM

Hi,

 

I have an HP dv3 notebook with WIN7 Home Premium 64-bit installed.

On this same pc and the same o.s. i already asked for help against viruses the last year, so i already used here your programs. I just say this to specify why it could be possible to find traces of the programs on the logs.

 

Right now my problem is that Chrome redirect me on "http://search.conduit.com" when i open it and when i search directly on the address bar..

I suspect that this could be linked to some virus infection...

 

What can i do?

 

Thank you very much for your help!!!



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:10 PM

Posted 12 June 2013 - 11:51 AM

Hello and welcome nabu, pretty much the same as the other machine.
 
Running these hould take care of this.
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results.
 
Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

Edited by boopme, 12 June 2013 - 11:56 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 nabu

nabu
  • Topic Starter

  • Members
  • 110 posts
  • OFFLINE
  •  
  • Local time:08:10 PM

Posted 13 June 2013 - 06:08 PM

MiniToolBox by Farbar  Version:21-04-2013
Ran by IreAle (administrator) on 13-06-2013 at 10:19:19
Running from "C:\Users\IreAle\Downloads"
Windows 7 Home Premium  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configurazione IP di Windows
 
Cache del resolver DNS svuotata.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
ProxyServer: 192.168.202.2:8080
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter = Connessione rete wireless (Connected)
Realtek PCIe GBE Family Controller = Connessione alla rete locale (LAN) (Media disconnected)
 
 
# ----------------------------------
# Configurazione IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global
 
 
popd
# Fine configurazione IPv4
 
 
 
Configurazione IP di Windows
 
   Nome host . . . . . . . . . . . . . . : Nowehereland
   Suffisso DNS primario . . . . . . . . : 
   Tipo nodo . . . . . . . . . . . . . . : Ibrido
   Routing IP abilitato. . . . . . . . . : No
   Proxy WINS abilitato . . . . . . . .  : No
   Elenco di ricerca suffissi DNS. . . . : homenet.telecomitalia.it
 
Scheda LAN wireless Connessione rete wireless:
 
   Suffisso DNS specifico per connessione: homenet.telecomitalia.it
   Descrizione . . . . . . . . . . . . . : Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
   Indirizzo fisico. . . . . . . . . . . : 68-A3-C4-73-46-56
   DHCP abilitato. . . . . . . . . . . . : S
   Configurazione automatica abilitata   : S
   Indirizzo IPv6 locale rispetto al collegamento . : fe80::7c20:a0ff:d26e:f1d3%12(Preferenziale) 
   Indirizzo IPv4. . . . . . . . . . . . : 192.168.1.110(Preferenziale) 
   Subnet mask . . . . . . . . . . . . . : 255.255.255.0
   Lease ottenuto. . . . . . . . . . . . : gioved 13 giugno 2013 10:14:55
   Scadenza lease . . . . . . . . . . .  : gioved 13 giugno 2013 15:41:35
   Gateway predefinito . . . . . . . . . : 192.168.1.1
   Server DHCP . . . . . . . . . . . . . : 192.168.1.1
   IAID DHCPv6 . . . . . . . . . . . : 308847556
   DUID Client DHCPv6. . . . . . . . : 00-01-00-01-16-6A-A4-EA-64-31-50-97-B3-12
   Server DNS . . . . . . . . . . . . .  : 192.168.1.1
   NetBIOS su TCP/IP . . . . . . . . . . : Attivato
 
Scheda Ethernet Connessione alla rete locale (LAN):
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: 
   Descrizione . . . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Indirizzo fisico. . . . . . . . . . . : 64-31-50-97-B3-12
   DHCP abilitato. . . . . . . . . . . . : S
   Configurazione automatica abilitata   : S
 
Scheda Tunnel isatap.homenet.telecomitalia.it:
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: homenet.telecomitalia.it
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
 
Scheda Tunnel isatap.{A518591B-F167-4E37-87DF-CD97B54EE028}:
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: 
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
 
Scheda Tunnel Teredo Tunneling Pseudo-Interface:
 
   Suffisso DNS specifico per connessione: 
   Descrizione . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
   Indirizzo IPv6 . . . . . . . . . . . . . . . . . : 2001:0:5ef5:79fb:2815:3bc2:a8fb:404d(Preferenziale) 
   Indirizzo IPv6 locale rispetto al collegamento . : fe80::2815:3bc2:a8fb:404d%13(Preferenziale) 
   Gateway predefinito . . . . . . . . . : ::
   NetBIOS su TCP/IP . . . . . . . . . . : Disattivato
Server:  UnKnown
Address:  192.168.1.1
 
Nome:    google.com
Addresses:  2a00:1450:4002:802::1002
 173.194.35.36
 173.194.35.37
 173.194.35.38
 173.194.35.39
 173.194.35.40
 173.194.35.41
 173.194.35.46
 173.194.35.32
 173.194.35.33
 173.194.35.34
 173.194.35.35
 
 
Esecuzione di Ping google.com [173.194.35.37] con 32 byte di dati:
Risposta da 173.194.35.37: byte=32 durata=66ms TTL=54
Risposta da 173.194.35.37: byte=32 durata=65ms TTL=54
 
Statistiche Ping per 173.194.35.37:
    Pacchetti: Trasmessi = 2, Ricevuti = 2, 
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 65ms, Massimo =  66ms, Medio =  65ms
Server:  UnKnown
Address:  192.168.1.1
 
Nome:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Esecuzione di Ping yahoo.com [206.190.36.45] con 32 byte di dati:
Risposta da 206.190.36.45: byte=32 durata=241ms TTL=50
Risposta da 206.190.36.45: byte=32 durata=241ms TTL=50
 
Statistiche Ping per 206.190.36.45:
    Pacchetti: Trasmessi = 2, Ricevuti = 2, 
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 241ms, Massimo =  241ms, Medio =  241ms
 
Esecuzione di Ping 127.0.0.1 con 32 byte di dati:
Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128
Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128
 
Statistiche Ping per 127.0.0.1:
    Pacchetti: Trasmessi = 2, Ricevuti = 2, 
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 0ms, Massimo =  0ms, Medio =  0ms
===========================================================================
Elenco interfacce
 12...68 a3 c4 73 46 56 ......Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
 11...64 31 50 97 b3 12 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Tabella route
===========================================================================
Route attive:
     Indirizzo rete             Mask          Gateway     Interfaccia Metrica
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.110     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.110    281
    192.168.1.110  255.255.255.255         On-link     192.168.1.110    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.110    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.110    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.110    281
===========================================================================
Route permanenti:
  Nessuna
 
IPv6 Tabella route
===========================================================================
Route attive:
 Interf Metrica Rete Destinazione      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:5ef5:79fb:2815:3bc2:a8fb:404d/128
                                    On-link
 12    281 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::2815:3bc2:a8fb:404d/128
                                    On-link
 12    281 fe80::7c20:a0ff:d26e:f1d3/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Route permanenti:
  Nessuna
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
 
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
 
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [46592] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/12/2013 02:57:43 PM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {2ec7f765-99b8-44b6-8081-ac1135040629}
 
Error: (06/12/2013 11:03:58 AM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: vlc.exe, versione: 1.1.11.0, timestamp: 0x4e1edf37
Nome del modulo che ha generato l'errore: vlc.exe, versione: 1.1.11.0, timestamp: 0x4e1edf37
Codice eccezione: 0xc0000005
Offset errore 0x000017b2
ID processo che ha generato l'errore: 0x1214
Ora di avvio dell'applicazione che ha generato l'errore: 0xvlc.exe0
Percorso dell'applicazione che ha generato l'errore: vlc.exe1
Percorso del modulo che ha generato l'errore: vlc.exe2
ID segnalazione: vlc.exe3
 
Error: (06/10/2013 11:06:29 PM) (Source: SideBySide) (User: )
Description: Generazione del contesto di attivazione non riuscita per "assemblyIdentity1". Errore nel file manifesto o dei criteri "assemblyIdentity2", riga assemblyIdentity3.
Il valore "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" dell'attributo "version" nell'elemento "assemblyIdentity" non è valido.
 
Error: (06/10/2013 11:52:14 AM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: atieclxx.exe, versione: 6.14.11.1059, timestamp: 0x4c2018b3
Nome del modulo che ha generato l'errore: atiadlxx.dll, versione: 6.14.10.1054, timestamp: 0x4c2010d4
Codice eccezione: 0xc000041d
Offset errore 0x000000000001ef68
ID processo che ha generato l'errore: 0x47c
Ora di avvio dell'applicazione che ha generato l'errore: 0xatieclxx.exe0
Percorso dell'applicazione che ha generato l'errore: atieclxx.exe1
Percorso del modulo che ha generato l'errore: atieclxx.exe2
ID segnalazione: atieclxx.exe3
 
Error: (06/10/2013 10:52:12 AM) (Source: SideBySide) (User: )
Description: Generazione del contesto di attivazione non riuscita per "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Errore nel file manifesto o dei criteri "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2", alla riga C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Una versione del componente richiesta dall'applicazione è in conflitto con un'altra versione del componente già attiva.
Componenti in conflitto:.
Componente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Componente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
 
Error: (06/10/2013 09:23:43 AM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {ca249180-64b7-47d5-a0a4-463db2d3dc37}
 
Error: (06/10/2013 09:23:11 AM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {ca249180-64b7-47d5-a0a4-463db2d3dc37}
 
Error: (06/09/2013 04:00:00 AM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client event error
 
Error: (06/06/2013 03:33:24 PM) (Source: SideBySide) (User: )
Description: Generazione del contesto di attivazione non riuscita per "assemblyIdentity1". Errore nel file manifesto o dei criteri "assemblyIdentity2", riga assemblyIdentity3.
Il valore "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" dell'attributo "version" nell'elemento "assemblyIdentity" non è valido.
 
Error: (06/04/2013 07:05:33 PM) (Source: SideBySide) (User: )
Description: Generazione del contesto di attivazione non riuscita per "assemblyIdentity1". Errore nel file manifesto o dei criteri "assemblyIdentity2", riga assemblyIdentity3.
Il valore "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" dell'attributo "version" nell'elemento "assemblyIdentity" non è valido.
 
 
System errors:
=============
Error: (06/12/2013 11:16:56 AM) (Source: volsnap) (User: )
Description: Le copie shadow del volume C: sono state interrotte. Impossibile espandere l'archivio delle copie shadow a causa di un limite imposto da un utente.
 
Error: (06/11/2013 07:22:39 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della risposta alla transazione dal servizio LanmanServer.
 
Error: (06/06/2013 11:36:36 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \...\DR5.
 
Error: (06/05/2013 03:06:52 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR3.
 
Error: (06/05/2013 03:06:52 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR3.
 
Error: (06/05/2013 03:06:52 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR3.
 
Error: (06/05/2013 03:06:52 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR3.
 
Error: (06/05/2013 03:06:52 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR3.
 
Error: (06/05/2013 03:06:52 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR3.
 
Error: (06/05/2013 03:06:52 PM) (Source: Disk) (User: )
Description: Il driver ha rilevato un errore del controller su \Device\Harddisk1\DR3.
 
 
Microsoft Office Sessions:
=========================
Error: (06/12/2013 02:57:43 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {2ec7f765-99b8-44b6-8081-ac1135040629}
 
Error: (06/12/2013 11:03:58 AM) (Source: Application Error)(User: )
Description: vlc.exe1.1.11.04e1edf37vlc.exe1.1.11.04e1edf37c0000005000017b2121401ce674bc556cab8C:\Program Files (x86)\VideoLAN\VLC\vlc.exeC:\Program Files (x86)\VideoLAN\VLC\vlc.exe03861265-d33f-11e2-b86d-64315097b312
 
Error: (06/10/2013 11:06:29 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
 
Error: (06/10/2013 11:52:14 AM) (Source: Application Error)(User: )
Description: atieclxx.exe6.14.11.10594c2018b3atiadlxx.dll6.14.10.10544c2010d4c000041d000000000001ef6847c01ce653b25f49388C:\Windows\system32\atieclxx.exeC:\Windows\system32\atiadlxx.dll6d328aa2-d1b3-11e2-8d12-64315097b312
 
Error: (06/10/2013 10:52:12 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Users\IreAle\Downloads\SoftonicDownloader_for_windows-live-movie-maker.exe
 
Error: (06/10/2013 09:23:43 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {ca249180-64b7-47d5-a0a4-463db2d3dc37}
 
Error: (06/10/2013 09:23:11 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {ca249180-64b7-47d5-a0a4-463db2d3dc37}
 
Error: (06/09/2013 04:00:00 AM) (Source: ATIeRecord)(User: )
Description: 
 
Error: (06/06/2013 03:33:24 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
 
Error: (06/04/2013 07:05:33 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
 
 
CodeIntegrity Errors:
===================================
  Date: 2012-10-28 19:34:38.902
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-28 19:34:38.839
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-28 19:34:38.777
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-28 19:34:38.714
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-26 09:51:26.268
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-26 09:51:26.221
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.0.29625)
1ClickDownloader (Version: 2.1 Build 26473)
3D Muscle Premium 2 (Version: 1.0.0)
ACDSee Free (Version: 1.1.21)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Digital Editions
Adobe Flash Player 10 ActiveX (Version: 10.1.53.64)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Shockwave Player 11.5 (Version: 11.5.7.609)
Advanced Archive Password Recovery (Version: 4.53)
Alcor Micro USB Card Reader (Version: 1.2.517.35221)
Apple Application Support (Version: 1.4.1)
Apple Software Update (Version: 2.1.3.127)
ArcSoft Panorama Maker 5 (Version: 5.0.1.25)
Atheros Driver Installation Program (Version: 9.0)
ATI Catalyst Install Manager (Version: 3.0.778.0)
Audacity 1.3.14 (Unicode)
Avidemux 2.5 (Version: 2.5.6.7716)
Avira Free Antivirus (Version: 12.1.9.352)
BatteryCare 0.9.14.0 (Version: 0.9.14.0)
Bit Che (Version: 1.0)
Blueberry Garden
Bluetooth Win7 Suite (64) (Version: 7.3.0.95)
Botanicula (Version: 1.0)
CardRecovery 5.30
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0621.2137.36973)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0621.2137.36973)
Catalyst Control Center InstallProxy (Version: 2010.0621.2137.36973)
Catalyst Control Center Localization All (Version: 2010.0621.2137.36973)
CCC Help Chinese Standard (Version: 2010.0621.2136.36973)
CCC Help Chinese Traditional (Version: 2010.0621.2136.36973)
CCC Help Czech (Version: 2010.0621.2136.36973)
CCC Help Danish (Version: 2010.0621.2136.36973)
CCC Help Dutch (Version: 2010.0621.2136.36973)
CCC Help English (Version: 2010.0621.2136.36973)
CCC Help Finnish (Version: 2010.0621.2136.36973)
CCC Help French (Version: 2010.0621.2136.36973)
CCC Help German (Version: 2010.0621.2136.36973)
CCC Help Greek (Version: 2010.0621.2136.36973)
CCC Help Hungarian (Version: 2010.0621.2136.36973)
CCC Help Italian (Version: 2010.0621.2136.36973)
CCC Help Japanese (Version: 2010.0621.2136.36973)
CCC Help Korean (Version: 2010.0621.2136.36973)
CCC Help Norwegian (Version: 2010.0621.2136.36973)
CCC Help Polish (Version: 2010.0621.2136.36973)
CCC Help Portuguese (Version: 2010.0621.2136.36973)
CCC Help Russian (Version: 2010.0621.2136.36973)
CCC Help Spanish (Version: 2010.0621.2136.36973)
CCC Help Swedish (Version: 2010.0621.2136.36973)
CCC Help Thai (Version: 2010.0621.2136.36973)
CCC Help Turkish (Version: 2010.0621.2136.36973)
ccc-core-static (Version: 2010.0621.2137.36973)
ccc-utility64 (Version: 2010.0621.2137.36973)
CCleaner (Version: 3.24)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CPUID HWMonitor 1.18
CyberLink DVD Suite (Version: 7.0.3003)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.41.3.0173)
DiskExplorer for NTFS (Version: 4.32.000)
Dreamside Maroon 1.0282.333
DVD Audio Extractor 6.3.0
DVD Menu Pack for HP MediaSmart Video (Version: 4.1.4121)
EasyBCD 2.1.2 (Version: 2.1.2)
Energy Star Digital Logo (Version: 1.0.1)
ESU for Microsoft Windows 7 (Version: 1.0.0)
Exact Audio Copy 1.0beta3 (Version: 1.0beta3)
foobar2000 v1.1.10 (Version: 1.1.10)
Foxit Reader (Version: 5.4.3.920)
FreeRIP v3.00 (Version: 3.00)
GetDataBack for FAT (Version: 4.30.000)
GetRight
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 27.0.1453.110)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.145)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HitmanPro 3.6 (Version: 3.6.2.173)
HP 3D DriveGuard (Version: 4.0.5.1)
HP Advisor (Version: 3.4.10262.3295)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.0.0)
HP MediaSmart DVD (Version: 4.1.4229)
HP MediaSmart Movies and TV (Version: 1.0.0.10)
HP MediaSmart Music (Version: 4.1.4215)
HP MediaSmart Photo (Version: 4.1.4211)
HP MediaSmart SmartMenu (Version: 3.1.1.12)
HP MediaSmart Video (Version: 4.1.4214)
HP MediaSmart Webcam (Version: 4.1.3024)
HP Power Manager (Version: 1.0.3)
HP Quick Launch (Version: 2.1.5)
HP QuickWeb Installer (Version: 1.3.11.0)
HP Setup (Version: 8.1.4186.3400)
HP Software Framework (Version: 4.1.6.1)
HP Support Assistant (Version: 6.1.12.1)
HP Wireless Assistant (Version: 4.0.9.0)
IDT Audio (Version: 1.0.6289.0)
IMG to ISO
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
IsoBuster 2.8.5 (Version: 2.8.5)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
jetAudio Basic VX (Version: 8.0.17)
Joulemeter (Version: 1.2.0)
L&H TTS3000 Italiano
LabelPrint (Version: 2.5.2907)
LAME v3.99.3 (for Windows)
LightScribe System Software (Version: 1.18.15.1)
Lume
Malwarebytes Anti-Malware versione 1.65.1.1000 (Version: 1.65.1.1000)
MediaInfo 0.7.63 (Version: 0.7.63)
Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile ITA Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended - Language Pack (ITA) (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended ITA Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.0 (Version: 3.0.11010.0)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
Movie Maker (Version: 16.4.3508.0205)
Movie Theme Pack for HP MediaSmart Video (Version: 4.1.4030)
Mozilla Firefox 9.0.1 (x86 it) (Version: 9.0.1)
MPC-HC 1.6.7.7114 (9eb64ec) (Version: 1.6.7.7114)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Neat Image v7.1.0 Demo Standalone
Nikon Message Center 2 (Version: 2.1.0)
Nikon Movie Editor (Version: 2.6.0)
Nokia Connectivity Cable Driver (Version: 7.1.48.0)
Nokia Map Loader (Version: 3.0.28)
Nokia Maps Updater 1.0.12 (Version: 1.0.12)
Nokia Suite (Version: 3.2.100.0)
OpenOffice.org 3.3 (Version: 3.3.9567)
Opera 12.01 (Version: 12.01.1532)
Pacchetto driver Windows - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
PC Connectivity Solution (Version: 11.5.13.0)
PCIABlocker64 (Version: 1.00.0000)
Photo Gallery (Version: 16.4.3508.0205)
PhotoNow! (Version: 1.1.6904)
PhotoPerfect Express 1.00
Picasa 3 (Version: 3.9)
Picture Control Utility (Version: 1.4.7)
Power2Go (Version: 6.1.4204)
PowerDirector (Version: 8.0.3003)
PX Profile Update (Version: 1.00.1.)
QuickTime (Version: 7.69.80.9)
Raccolta foto (Version: 16.4.3508.0205)
RAMDisk (Version: 3.5.130)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.17.304.2010)
Recovery Manager (Version: 5.5.3023)
Revo Uninstaller 1.94 (Version: 1.94)
Safari (Version: 5.34.55.3)
SelectionLinks (Version: 1.0)
Shape Collage
Skype Click to Call (Version: 6.9.12585)
Skype™ 5.10 (Version: 5.10.116)
StarCraft II (Version: 1.0.0.15405)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
TATA DOCOMO 3G (Version: 1.0.0.1)
The Tiny Bang Story
TiviPhone softphone
UltraISO Premium V9.53
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
uTorrentBar_IT Toolbar (Version: 6.11.2.6)
ViewNX 2 (Version: 2.6.0)
VLC media player 1.1.11 (Version: 1.1.11)
Vodafone Mobile Broadband via the phone (Version: 2.7.25)
Vodafone Mobile Connect Smartplug (Version: 2.7.25)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows 7 USB/DVD Download Tool (Version: 1.0.30)
Windows Live Communications Platform (Version: 16.4.3508.0205)
Windows Live Essentials (Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3508.0205)
Windows Live Photo Common (Version: 16.4.3508.0205)
Windows Live PIMT Platform (Version: 16.4.3508.0205)
Windows Live SOXE (Version: 16.4.3508.0205)
Windows Live SOXE Definitions (Version: 16.4.3508.0205)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205)
WinHTTrack Website Copier 3.45-4 (x64) (Version: 3.45.4)
WinPatrol (Version: 25.6.2012.1)
WinRAR 4.10 beta 4 (64-bit) (Version: 4.10.4)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 38%
Total physical RAM: 3893.86 MB
Available physical RAM: 2399.29 MB
Total Pagefile: 7785.86 MB
Available Pagefile: 5497.25 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.11 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:63.97 GB) (Free:4.08 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:24.62 GB) (Free:3.6 GB) NTFS
4 Drive f: () (Fixed) (Total:347.08 GB) (Free:84.64 GB) NTFS
 
========================= Users: ========================================
 
Account utente per \\NOWEHERELAND
 
Administrator            Guest                    IreAle                   
Esecuzione comando riuscita.
 
 
**** End of log ****
 

 

 

 

 

11:23:45.0805 7044  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:23:46.0185 7044  ============================================================
11:23:46.0185 7044  Current date / time: 2013/06/13 11:23:46.0185
11:23:46.0185 7044  SystemInfo:
11:23:46.0185 7044  
11:23:46.0185 7044  OS Version: 6.1.7600 ServicePack: 0.0
11:23:46.0185 7044  Product type: Workstation
11:23:46.0185 7044  ComputerName: NOWEHERELAND
11:23:46.0185 7044  UserName: IreAle
11:23:46.0185 7044  Windows directory: C:\Windows
11:23:46.0185 7044  System windows directory: C:\Windows
11:23:46.0185 7044  Running under WOW64
11:23:46.0185 7044  Processor architecture: Intel x64
11:23:46.0185 7044  Number of processors: 4
11:23:46.0185 7044  Page size: 0x1000
11:23:46.0185 7044  Boot type: Normal boot
11:23:46.0185 7044  ============================================================
11:23:46.0643 7044  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:23:46.0648 7044  ============================================================
11:23:46.0648 7044  \Device\Harddisk0\DR0:
11:23:46.0648 7044  MBR partitions:
11:23:46.0648 7044  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
11:23:46.0648 7044  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x7FEFAB8
11:23:46.0660 7044  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xBBE8CE8, BlocksNum 0x2B62B47E
11:23:46.0660 7044  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x37215000, BlocksNum 0x313D000
11:23:46.0660 7044  ============================================================
11:23:46.0697 7044  C: <-> \Device\Harddisk0\DR0\Partition2
11:23:46.0741 7044  D: <-> \Device\Harddisk0\DR0\Partition4
11:23:46.0890 7044  F: <-> \Device\Harddisk0\DR0\Partition3
11:23:46.0890 7044  ============================================================
11:23:46.0890 7044  Initialize success
11:23:46.0890 7044  ============================================================
11:23:54.0372 5756  ============================================================
11:23:54.0372 5756  Scan started
11:23:54.0372 5756  Mode: Manual; TDLFS; 
11:23:54.0372 5756  ============================================================
11:23:54.0819 5756  ================ Scan system memory ========================
11:23:54.0820 5756  System memory - ok
11:23:54.0820 5756  ================ Scan services =============================
11:23:54.0986 5756  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
11:23:54.0987 5756  1394ohci - ok
11:23:55.0016 5756  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
11:23:55.0017 5756  Accelerometer - ok
11:23:55.0101 5756  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
11:23:55.0102 5756  ACDaemon - ok
11:23:55.0130 5756  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
11:23:55.0132 5756  ACPI - ok
11:23:55.0169 5756  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
11:23:55.0170 5756  AcpiPmi - ok
11:23:55.0213 5756  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
11:23:55.0216 5756  adp94xx - ok
11:23:55.0222 5756  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
11:23:55.0224 5756  adpahci - ok
11:23:55.0229 5756  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
11:23:55.0230 5756  adpu320 - ok
11:23:55.0255 5756  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:23:55.0256 5756  AeLookupSvc - ok
11:23:55.0324 5756  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
11:23:55.0325 5756  AESTFilters - ok
11:23:55.0358 5756  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
11:23:55.0361 5756  AFD - ok
11:23:55.0402 5756  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
11:23:55.0402 5756  agp440 - ok
11:23:55.0433 5756  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
11:23:55.0434 5756  ALG - ok
11:23:55.0458 5756  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
11:23:55.0459 5756  aliide - ok
11:23:55.0490 5756  [ CC180E1E0700995340C838BC1A729577 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:23:55.0491 5756  AMD External Events Utility - ok
11:23:55.0495 5756  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
11:23:55.0495 5756  amdide - ok
11:23:55.0508 5756  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
11:23:55.0508 5756  AmdK8 - ok
11:23:55.0633 5756  [ 8155EA1864D1FA8B168C46C41ED97A76 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:23:55.0663 5756  amdkmdag - ok
11:23:55.0718 5756  [ 4841C7AF2BAC05AE23955D65B4336446 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
11:23:55.0720 5756  amdkmdap - ok
11:23:55.0744 5756  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
11:23:55.0745 5756  AmdPPM - ok
11:23:55.0791 5756  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:23:55.0791 5756  amdsata - ok
11:23:55.0818 5756  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
11:23:55.0819 5756  amdsbs - ok
11:23:55.0839 5756  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:23:55.0840 5756  amdxata - ok
11:23:55.0876 5756  [ 37EA167782AF19301AF9C05804948BB2 ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
11:23:55.0877 5756  AmUStor - ok
11:23:55.0967 5756  [ 22F45B5EC50FCC97A1A4A26EDD5A1263 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
11:23:55.0968 5756  AntiVirSchedulerService - ok
11:23:56.0004 5756  [ 9AB4FA686910D4E49A8D92836E3DC23B ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
11:23:56.0005 5756  AntiVirService - ok
11:23:56.0043 5756  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
11:23:56.0044 5756  AppID - ok
11:23:56.0073 5756  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:23:56.0073 5756  AppIDSvc - ok
11:23:56.0088 5756  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
11:23:56.0089 5756  Appinfo - ok
11:23:56.0152 5756  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
11:23:56.0152 5756  arc - ok
11:23:56.0157 5756  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
11:23:56.0158 5756  arcsas - ok
11:23:56.0249 5756  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:23:56.0249 5756  aspnet_state - ok
11:23:56.0267 5756  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:23:56.0268 5756  AsyncMac - ok
11:23:56.0288 5756  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
11:23:56.0288 5756  atapi - ok
11:23:56.0322 5756  [ 50F257E19554421B6891E3F998EDCA90 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
11:23:56.0323 5756  AthBTPort - ok
11:23:56.0351 5756  [ 4119870B90E1B5E7797D6433D21F9216 ] ATHDFU          C:\Windows\system32\Drivers\AthDfu.sys
11:23:56.0352 5756  ATHDFU - ok
11:23:56.0394 5756  [ 4D643CD9E892E559355B7A77D532BD38 ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
11:23:56.0395 5756  AtherosSvc - ok
11:23:56.0485 5756  [ B4421D8CDADC441F76BA39532A3E3414 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
11:23:56.0501 5756  athr - ok
11:23:56.0564 5756  [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
11:23:56.0565 5756  AtiHdmiService - ok
11:23:56.0601 5756  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:23:56.0605 5756  AudioEndpointBuilder - ok
11:23:56.0614 5756  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:23:56.0617 5756  AudioSrv - ok
11:23:56.0666 5756  [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
11:23:56.0667 5756  avgntflt - ok
11:23:56.0690 5756  [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
11:23:56.0691 5756  avipbb - ok
11:23:56.0714 5756  [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
11:23:56.0715 5756  avkmgr - ok
11:23:56.0744 5756  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:23:56.0745 5756  AxInstSV - ok
11:23:56.0781 5756  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
11:23:56.0783 5756  b06bdrv - ok
11:23:56.0819 5756  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:23:56.0821 5756  b57nd60a - ok
11:23:56.0884 5756  [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
11:23:56.0890 5756  BCM43XX - ok
11:23:56.0922 5756  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:23:56.0923 5756  BDESVC - ok
11:23:56.0972 5756  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:23:56.0973 5756  Beep - ok
11:23:57.0001 5756  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
11:23:57.0005 5756  BFE - ok
11:23:57.0083 5756  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\System32\qmgr.dll
11:23:57.0087 5756  BITS - ok
11:23:57.0104 5756  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:23:57.0104 5756  blbdrive - ok
11:23:57.0136 5756  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:23:57.0136 5756  bowser - ok
11:23:57.0161 5756  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:23:57.0162 5756  BrFiltLo - ok
11:23:57.0170 5756  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:23:57.0170 5756  BrFiltUp - ok
11:23:57.0203 5756  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
11:23:57.0204 5756  BridgeMP - ok
11:23:57.0254 5756  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
11:23:57.0255 5756  Browser - ok
11:23:57.0278 5756  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:23:57.0279 5756  Brserid - ok
11:23:57.0283 5756  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:23:57.0284 5756  BrSerWdm - ok
11:23:57.0288 5756  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:23:57.0288 5756  BrUsbMdm - ok
11:23:57.0291 5756  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:23:57.0292 5756  BrUsbSer - ok
11:23:57.0364 5756  [ B3BCD755FA9A359D10208CC9F09847CC ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
11:23:57.0365 5756  BTATH_A2DP - ok
11:23:57.0396 5756  [ 9BBBA9D6DBDEFC8A6542BC7A6EBAF710 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
11:23:57.0397 5756  btath_avdt - ok
11:23:57.0420 5756  [ D838DD1BCB328EFCFAD7A52DE9E3CAFD ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
11:23:57.0421 5756  BTATH_BUS - ok
11:23:57.0434 5756  [ A441B800E04CF8443FAF519207563ABB ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
11:23:57.0435 5756  BTATH_HCRP - ok
11:23:57.0452 5756  [ B16F8429A35BBA2A8EF9DB2E08675B97 ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
11:23:57.0453 5756  BTATH_LWFLT - ok
11:23:57.0478 5756  [ C24231C6BDFE21735930084A22089AAB ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
11:23:57.0479 5756  BTATH_RCP - ok
11:23:57.0528 5756  [ 6C4911B6FB92984FBEF775674795CFA2 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
11:23:57.0529 5756  BtFilter - ok
11:23:57.0590 5756  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
11:23:57.0591 5756  BthEnum - ok
11:23:57.0613 5756  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
11:23:57.0613 5756  BTHMODEM - ok
11:23:57.0636 5756  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
11:23:57.0637 5756  BthPan - ok
11:23:57.0683 5756  [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
11:23:57.0686 5756  BTHPORT - ok
11:23:57.0716 5756  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
11:23:57.0716 5756  bthserv - ok
11:23:57.0748 5756  [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
11:23:57.0749 5756  BTHUSB - ok
11:23:57.0782 5756  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:23:57.0783 5756  cdfs - ok
11:23:57.0804 5756  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:23:57.0805 5756  cdrom - ok
11:23:57.0823 5756  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
11:23:57.0824 5756  CertPropSvc - ok
11:23:57.0840 5756  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:23:57.0841 5756  circlass - ok
11:23:57.0862 5756  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
11:23:57.0864 5756  CLFS - ok
11:23:57.0911 5756  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:23:57.0912 5756  clr_optimization_v2.0.50727_32 - ok
11:23:57.0940 5756  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:23:57.0941 5756  clr_optimization_v2.0.50727_64 - ok
11:23:57.0995 5756  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:23:57.0996 5756  clr_optimization_v4.0.30319_32 - ok
11:23:58.0020 5756  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:23:58.0021 5756  clr_optimization_v4.0.30319_64 - ok
11:23:58.0052 5756  [ 9573E8C7C3B3D1625FD941841FD0859C ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
11:23:58.0053 5756  clwvd - ok
11:23:58.0071 5756  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:23:58.0071 5756  CmBatt - ok
11:23:58.0084 5756  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
11:23:58.0085 5756  cmdide - ok
11:23:58.0179 5756  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
11:23:58.0182 5756  CNG - ok
11:23:58.0204 5756  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:23:58.0205 5756  Compbatt - ok
11:23:58.0223 5756  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
11:23:58.0223 5756  CompositeBus - ok
11:23:58.0227 5756  COMSysApp - ok
11:23:58.0264 5756  [ 262969A3FAB32B9E17E63E2D17A57744 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
11:23:58.0265 5756  cpuz135 - ok
11:23:58.0283 5756  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
11:23:58.0284 5756  crcdisk - ok
11:23:58.0324 5756  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:23:58.0325 5756  CryptSvc - ok
11:23:58.0369 5756  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:23:58.0372 5756  DcomLaunch - ok
11:23:58.0399 5756  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
11:23:58.0401 5756  defragsvc - ok
11:23:58.0435 5756  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:23:58.0436 5756  DfsC - ok
11:23:58.0463 5756  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:23:58.0465 5756  Dhcp - ok
11:23:58.0508 5756  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
11:23:58.0509 5756  discache - ok
11:23:58.0543 5756  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
11:23:58.0544 5756  Disk - ok
11:23:58.0563 5756  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:23:58.0564 5756  Dnscache - ok
11:23:58.0595 5756  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
11:23:58.0597 5756  dot3svc - ok
11:23:58.0625 5756  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
11:23:58.0627 5756  DPS - ok
11:23:58.0650 5756  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:23:58.0651 5756  drmkaud - ok
11:23:58.0688 5756  [ D3D64CF7B2BCEAA34A270F45A3FFFB36 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:23:58.0690 5756  dtsoftbus01 - ok
11:23:58.0728 5756  [ A298AEA9FCA253E7EFF040A08C7C6376 ] DVMIO           C:\Windows\system32\DRIVERS\dvmio.sys
11:23:58.0729 5756  DVMIO - ok
11:23:58.0803 5756  [ 022ACBAE96CB9F0D9CC4A3287D0C8868 ] DvmMDES         C:\SwSetup\HPQWMM\QuickWeb\QW.SYS\config\DVMExportService.exe
11:23:58.0805 5756  DvmMDES - ok
11:23:58.0852 5756  [ 601E731BF8E3F22906CE7D4D724B0439 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:23:58.0857 5756  DXGKrnl - ok
11:23:58.0882 5756  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
11:23:58.0883 5756  EapHost - ok
11:23:58.0950 5756  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
11:23:58.0964 5756  ebdrv - ok
11:23:59.0009 5756  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
11:23:59.0010 5756  EFS - ok
11:23:59.0065 5756  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:23:59.0069 5756  ehRecvr - ok
11:23:59.0094 5756  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
11:23:59.0095 5756  ehSched - ok
11:23:59.0132 5756  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
11:23:59.0135 5756  elxstor - ok
11:23:59.0146 5756  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
11:23:59.0146 5756  ErrDev - ok
11:23:59.0185 5756  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
11:23:59.0187 5756  EventSystem - ok
11:23:59.0197 5756  ewusbnet - ok
11:23:59.0223 5756  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
11:23:59.0224 5756  exfat - ok
11:23:59.0243 5756  ezSharedSvc - ok
11:23:59.0269 5756  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:23:59.0271 5756  fastfat - ok
11:23:59.0296 5756  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
11:23:59.0300 5756  Fax - ok
11:23:59.0313 5756  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:23:59.0314 5756  fdc - ok
11:23:59.0340 5756  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:23:59.0341 5756  fdPHost - ok
11:23:59.0349 5756  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:23:59.0350 5756  FDResPub - ok
11:23:59.0357 5756  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:23:59.0358 5756  FileInfo - ok
11:23:59.0370 5756  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:23:59.0371 5756  Filetrace - ok
11:23:59.0375 5756  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:23:59.0376 5756  flpydisk - ok
11:23:59.0390 5756  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:23:59.0392 5756  FltMgr - ok
11:23:59.0426 5756  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
11:23:59.0432 5756  FontCache - ok
11:23:59.0471 5756  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:23:59.0472 5756  FontCache3.0.0.0 - ok
11:23:59.0546 5756  [ 37C2FF67A2565286F1C1C1072BE74678 ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
11:23:59.0547 5756  Freemake Improver - ok
11:23:59.0557 5756  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:23:59.0558 5756  FsDepends - ok
11:23:59.0579 5756  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:23:59.0580 5756  Fs_Rec - ok
11:23:59.0614 5756  [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:23:59.0616 5756  fvevol - ok
11:23:59.0642 5756  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
11:23:59.0643 5756  gagp30kx - ok
11:23:59.0677 5756  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
11:23:59.0681 5756  gpsvc - ok
11:23:59.0753 5756  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:23:59.0754 5756  gupdate - ok
11:23:59.0765 5756  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:23:59.0766 5756  gupdatem - ok
11:23:59.0795 5756  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
11:23:59.0796 5756  gusvc - ok
11:23:59.0816 5756  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:23:59.0817 5756  hcw85cir - ok
11:23:59.0834 5756  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:23:59.0836 5756  HdAudAddService - ok
11:23:59.0849 5756  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:23:59.0850 5756  HDAudBus - ok
11:23:59.0878 5756  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
11:23:59.0878 5756  HECIx64 - ok
11:23:59.0881 5756  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:23:59.0881 5756  HidBatt - ok
11:23:59.0892 5756  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
11:23:59.0893 5756  HidBth - ok
11:23:59.0913 5756  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
11:23:59.0914 5756  HidIr - ok
11:23:59.0931 5756  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
11:23:59.0932 5756  hidserv - ok
11:23:59.0957 5756  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:23:59.0958 5756  HidUsb - ok
11:23:59.0979 5756  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:23:59.0980 5756  hkmsvc - ok
11:24:00.0005 5756  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:24:00.0007 5756  HomeGroupListener - ok
11:24:00.0031 5756  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:24:00.0033 5756  HomeGroupProvider - ok
11:24:00.0111 5756  [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
11:24:00.0111 5756  HP Support Assistant Service - ok
11:24:00.0160 5756  [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
11:24:00.0161 5756  HP Wireless Assistant Service - ok
11:24:00.0196 5756  [ C958976C7DAAF47084A33EBBC6E28B84 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
11:24:00.0197 5756  HPDrvMntSvc.exe - ok
11:24:00.0219 5756  [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
11:24:00.0220 5756  hpdskflt - ok
11:24:00.0247 5756  [ 09FBD4C4DB2FD84B9AB1C5BFDCC95559 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
11:24:00.0250 5756  hpqwmiex - ok
11:24:00.0293 5756  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
11:24:00.0293 5756  HpSAMD - ok
11:24:00.0319 5756  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv           C:\Windows\system32\Hpservice.exe
11:24:00.0320 5756  hpsrv - ok
11:24:00.0380 5756  [ 5AA89E152634954E15E9DB265C6A8557 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
11:24:00.0381 5756  HPWMISVC - ok
11:24:00.0410 5756  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:24:00.0414 5756  HTTP - ok
11:24:00.0429 5756  hwdatacard - ok
11:24:00.0446 5756  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:24:00.0447 5756  hwpolicy - ok
11:24:00.0452 5756  hwusbdev - ok
11:24:00.0475 5756  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
11:24:00.0476 5756  i8042prt - ok
11:24:00.0503 5756  [ ABBF174CB394F5C437410A788B7E404A ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
11:24:00.0506 5756  iaStor - ok
11:24:00.0543 5756  [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
11:24:00.0543 5756  IAStorDataMgrSvc - ok
11:24:00.0581 5756  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:24:00.0583 5756  iaStorV - ok
11:24:00.0648 5756  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:24:00.0649 5756  IDriverT - ok
11:24:00.0691 5756  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:24:00.0696 5756  idsvc - ok
11:24:00.0856 5756  [ FBACBED7A37B3223822470FF1D8EA00F ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
11:24:00.0901 5756  igfx - ok
11:24:00.0928 5756  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
11:24:00.0929 5756  iirsp - ok
11:24:00.0968 5756  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
11:24:00.0973 5756  IKEEXT - ok
11:24:00.0992 5756  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
11:24:00.0993 5756  Impcd - ok
11:24:01.0010 5756  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
11:24:01.0010 5756  intelide - ok
11:24:01.0174 5756  [ FBACBED7A37B3223822470FF1D8EA00F ] intelkmd        C:\Windows\system32\DRIVERS\igdpmd64.sys
11:24:01.0219 5756  intelkmd - ok
11:24:01.0248 5756  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:24:01.0249 5756  intelppm - ok
11:24:01.0280 5756  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:24:01.0281 5756  IPBusEnum - ok
11:24:01.0296 5756  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:24:01.0297 5756  IpFilterDriver - ok
11:24:01.0320 5756  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:24:01.0324 5756  iphlpsvc - ok
11:24:01.0337 5756  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
11:24:01.0338 5756  IPMIDRV - ok
11:24:01.0351 5756  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:24:01.0352 5756  IPNAT - ok
11:24:01.0366 5756  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:24:01.0367 5756  IRENUM - ok
11:24:01.0378 5756  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
11:24:01.0379 5756  isapnp - ok
11:24:01.0399 5756  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
11:24:01.0400 5756  iScsiPrt - ok
11:24:01.0414 5756  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:24:01.0414 5756  kbdclass - ok
11:24:01.0440 5756  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:24:01.0441 5756  kbdhid - ok
11:24:01.0451 5756  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
11:24:01.0452 5756  KeyIso - ok
11:24:01.0483 5756  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:24:01.0484 5756  KSecDD - ok
11:24:01.0499 5756  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:24:01.0501 5756  KSecPkg - ok
11:24:01.0511 5756  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:24:01.0511 5756  ksthunk - ok
11:24:01.0536 5756  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:24:01.0538 5756  KtmRm - ok
11:24:01.0568 5756  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\System32\srvsvc.dll
11:24:01.0571 5756  LanmanServer - ok
11:24:01.0594 5756  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:24:01.0596 5756  LanmanWorkstation - ok
11:24:01.0659 5756  [ 7550D101BF49FDB1F92666A233EE36C4 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
11:24:01.0659 5756  LightScribeService - ok
11:24:01.0696 5756  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:24:01.0697 5756  lltdio - ok
11:24:01.0730 5756  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:24:01.0732 5756  lltdsvc - ok
11:24:01.0747 5756  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:24:01.0748 5756  lmhosts - ok
11:24:01.0804 5756  [ 6D515466AB8BFE61184092B635AE6EB4 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:24:01.0806 5756  LMS - ok
11:24:01.0828 5756  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
11:24:01.0829 5756  LSI_FC - ok
11:24:01.0849 5756  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
11:24:01.0850 5756  LSI_SAS - ok
11:24:01.0853 5756  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:24:01.0854 5756  LSI_SAS2 - ok
11:24:01.0860 5756  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:24:01.0861 5756  LSI_SCSI - ok
11:24:01.0875 5756  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
11:24:01.0876 5756  luafv - ok
11:24:01.0879 5756  massfilter - ok
11:24:01.0905 5756  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:24:01.0906 5756  Mcx2Svc - ok
11:24:01.0919 5756  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
11:24:01.0920 5756  megasas - ok
11:24:01.0933 5756  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
11:24:01.0935 5756  MegaSR - ok
11:24:01.0955 5756  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
11:24:01.0957 5756  MMCSS - ok
11:24:01.0973 5756  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
11:24:01.0974 5756  Modem - ok
11:24:01.0995 5756  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:24:01.0995 5756  monitor - ok
11:24:02.0006 5756  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:24:02.0007 5756  mouclass - ok
11:24:02.0038 5756  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:24:02.0039 5756  mouhid - ok
11:24:02.0056 5756  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:24:02.0057 5756  mountmgr - ok
11:24:02.0074 5756  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
11:24:02.0075 5756  mpio - ok
11:24:02.0087 5756  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:24:02.0088 5756  mpsdrv - ok
11:24:02.0120 5756  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:24:02.0125 5756  MpsSvc - ok
11:24:02.0141 5756  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:24:02.0142 5756  MRxDAV - ok
11:24:02.0170 5756  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:24:02.0172 5756  mrxsmb - ok
11:24:02.0191 5756  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:24:02.0192 5756  mrxsmb10 - ok
11:24:02.0207 5756  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:24:02.0208 5756  mrxsmb20 - ok
11:24:02.0230 5756  [ 5E939CF91EA4A841DBAFE4627E0292BB ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
11:24:02.0230 5756  msahci - ok
11:24:02.0250 5756  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
11:24:02.0251 5756  msdsm - ok
11:24:02.0268 5756  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
11:24:02.0269 5756  MSDTC - ok
11:24:02.0283 5756  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:24:02.0284 5756  Msfs - ok
11:24:02.0299 5756  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:24:02.0300 5756  mshidkmdf - ok
11:24:02.0308 5756  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
11:24:02.0308 5756  msisadrv - ok
11:24:02.0330 5756  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:24:02.0332 5756  MSiSCSI - ok
11:24:02.0335 5756  msiserver - ok
11:24:02.0358 5756  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:24:02.0358 5756  MSKSSRV - ok
11:24:02.0372 5756  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:24:02.0373 5756  MSPCLOCK - ok
11:24:02.0391 5756  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:24:02.0391 5756  MSPQM - ok
11:24:02.0406 5756  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:24:02.0409 5756  MsRPC - ok
11:24:02.0421 5756  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
11:24:02.0422 5756  mssmbios - ok
11:24:02.0444 5756  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:24:02.0445 5756  MSTEE - ok
11:24:02.0457 5756  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
11:24:02.0458 5756  MTConfig - ok
11:24:02.0476 5756  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:24:02.0477 5756  Mup - ok
11:24:02.0496 5756  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
11:24:02.0499 5756  napagent - ok
11:24:02.0524 5756  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:24:02.0526 5756  NativeWifiP - ok
11:24:02.0552 5756  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:24:02.0556 5756  NDIS - ok
11:24:02.0567 5756  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:24:02.0568 5756  NdisCap - ok
11:24:02.0591 5756  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:24:02.0592 5756  NdisTapi - ok
11:24:02.0619 5756  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:24:02.0619 5756  Ndisuio - ok
11:24:02.0635 5756  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:24:02.0636 5756  NdisWan - ok
11:24:02.0649 5756  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:24:02.0650 5756  NDProxy - ok
11:24:02.0662 5756  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:24:02.0663 5756  NetBIOS - ok
11:24:02.0674 5756  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:24:02.0676 5756  NetBT - ok
11:24:02.0684 5756  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
11:24:02.0685 5756  Netlogon - ok
11:24:02.0728 5756  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
11:24:02.0731 5756  Netman - ok
11:24:02.0755 5756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:02.0756 5756  NetMsmqActivator - ok
11:24:02.0760 5756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:02.0761 5756  NetPipeActivator - ok
11:24:02.0774 5756  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
11:24:02.0777 5756  netprofm - ok
11:24:02.0781 5756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:02.0783 5756  NetTcpActivator - ok
11:24:02.0786 5756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:02.0787 5756  NetTcpPortSharing - ok
11:24:02.0883 5756  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
11:24:02.0907 5756  netw5v64 - ok
11:24:02.0922 5756  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
11:24:02.0922 5756  nfrd960 - ok
11:24:02.0960 5756  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:24:02.0962 5756  NlaSvc - ok
11:24:02.0990 5756  [ 907B5E1E4A592E5EDC5E4CCBDE4863C2 ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
11:24:02.0991 5756  nmwcd - ok
11:24:03.0004 5756  [ 41C1AC1F3613435EB32D67BCB80A5FA5 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
11:24:03.0004 5756  nmwcdc - ok
11:24:03.0023 5756  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:24:03.0024 5756  Npfs - ok
11:24:03.0031 5756  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
11:24:03.0032 5756  nsi - ok
11:24:03.0046 5756  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:24:03.0047 5756  nsiproxy - ok
11:24:03.0097 5756  [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:24:03.0105 5756  Ntfs - ok
11:24:03.0119 5756  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
11:24:03.0119 5756  Null - ok
11:24:03.0150 5756  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:24:03.0151 5756  nvraid - ok
11:24:03.0160 5756  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:24:03.0161 5756  nvstor - ok
11:24:03.0182 5756  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
11:24:03.0183 5756  nv_agp - ok
11:24:03.0198 5756  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
11:24:03.0199 5756  ohci1394 - ok
11:24:03.0217 5756  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:24:03.0220 5756  p2pimsvc - ok
11:24:03.0232 5756  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:24:03.0235 5756  p2psvc - ok
11:24:03.0239 5756  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:24:03.0240 5756  Parport - ok
11:24:03.0277 5756  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:24:03.0278 5756  partmgr - ok
11:24:03.0291 5756  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:24:03.0293 5756  PcaSvc - ok
11:24:03.0322 5756  [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
11:24:03.0322 5756  pccsmcfd - ok
11:24:03.0327 5756  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
11:24:03.0329 5756  pci - ok
11:24:03.0341 5756  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
11:24:03.0341 5756  pciide - ok
11:24:03.0347 5756  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
11:24:03.0348 5756  pcmcia - ok
11:24:03.0365 5756  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:24:03.0366 5756  pcw - ok
11:24:03.0388 5756  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:24:03.0392 5756  PEAUTH - ok
11:24:03.0456 5756  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:24:03.0458 5756  PerfHost - ok
11:24:03.0502 5756  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
11:24:03.0510 5756  pla - ok
11:24:03.0543 5756  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:24:03.0546 5756  PlugPlay - ok
11:24:03.0554 5756  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:24:03.0555 5756  PNRPAutoReg - ok
11:24:03.0567 5756  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:24:03.0570 5756  PNRPsvc - ok
11:24:03.0600 5756  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:24:03.0603 5756  PolicyAgent - ok
11:24:03.0623 5756  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
11:24:03.0625 5756  Power - ok
11:24:03.0653 5756  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:24:03.0654 5756  PptpMiniport - ok
11:24:03.0670 5756  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
11:24:03.0671 5756  Processor - ok
11:24:03.0705 5756  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
11:24:03.0707 5756  ProfSvc - ok
11:24:03.0717 5756  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:24:03.0719 5756  ProtectedStorage - ok
11:24:03.0737 5756  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:24:03.0738 5756  Psched - ok
11:24:03.0780 5756  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
11:24:03.0787 5756  ql2300 - ok
11:24:03.0792 5756  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
11:24:03.0793 5756  ql40xx - ok
11:24:03.0820 5756  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
11:24:03.0822 5756  QWAVE - ok
11:24:03.0831 5756  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:24:03.0832 5756  QWAVEdrv - ok
11:24:03.0892 5756  [ CB4E105CA08967D3C9B89951598B88E7 ] RAMDiskVE       C:\Windows\system32\Drivers\RAMDiskVE.sys
11:24:03.0892 5756  RAMDiskVE - ok
11:24:03.0910 5756  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:24:03.0910 5756  RasAcd - ok
11:24:03.0938 5756  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:24:03.0939 5756  RasAgileVpn - ok
11:24:03.0949 5756  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
11:24:03.0950 5756  RasAuto - ok
11:24:03.0965 5756  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:24:03.0966 5756  Rasl2tp - ok
11:24:03.0979 5756  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
11:24:03.0981 5756  RasMan - ok
11:24:03.0992 5756  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:24:03.0993 5756  RasPppoe - ok
11:24:04.0005 5756  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:24:04.0006 5756  RasSstp - ok
11:24:04.0020 5756  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:24:04.0022 5756  rdbss - ok
11:24:04.0038 5756  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:24:04.0038 5756  rdpbus - ok
11:24:04.0063 5756  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:24:04.0064 5756  RDPCDD - ok
11:24:04.0072 5756  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:24:04.0072 5756  RDPENCDD - ok
11:24:04.0085 5756  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:24:04.0085 5756  RDPREFMP - ok
11:24:04.0120 5756  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:24:04.0121 5756  RDPWD - ok
11:24:04.0149 5756  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:24:04.0150 5756  rdyboost - ok
11:24:04.0179 5756  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:24:04.0181 5756  RemoteAccess - ok
11:24:04.0199 5756  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:24:04.0201 5756  RemoteRegistry - ok
11:24:04.0237 5756  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
11:24:04.0238 5756  RFCOMM - ok
11:24:04.0270 5756  [ 0DE22421179D5A8440B68517DDF2B051 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
11:24:04.0271 5756  RimVSerPort - ok
11:24:04.0285 5756  [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
11:24:04.0286 5756  ROOTMODEM - ok
11:24:04.0298 5756  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:24:04.0300 5756  RpcEptMapper - ok
11:24:04.0306 5756  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
11:24:04.0307 5756  RpcLocator - ok
11:24:04.0327 5756  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
11:24:04.0330 5756  RpcSs - ok
11:24:04.0338 5756  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:24:04.0339 5756  rspndr - ok
11:24:04.0377 5756  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
11:24:04.0380 5756  RTL8167 - ok
11:24:04.0392 5756  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
11:24:04.0394 5756  SamSs - ok
11:24:04.0414 5756  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
11:24:04.0415 5756  sbp2port - ok
11:24:04.0435 5756  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:24:04.0438 5756  SCardSvr - ok
11:24:04.0448 5756  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:24:04.0448 5756  scfilter - ok
11:24:04.0483 5756  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
11:24:04.0490 5756  Schedule - ok
11:24:04.0506 5756  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:24:04.0507 5756  SCPolicySvc - ok
11:24:04.0515 5756  [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
11:24:04.0516 5756  sdbus - ok
11:24:04.0532 5756  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:24:04.0534 5756  SDRSVC - ok
11:24:04.0550 5756  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:24:04.0551 5756  secdrv - ok
11:24:04.0560 5756  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
11:24:04.0561 5756  seclogon - ok
11:24:04.0570 5756  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
11:24:04.0572 5756  SENS - ok
11:24:04.0604 5756  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:24:04.0605 5756  SensrSvc - ok
11:24:04.0619 5756  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:24:04.0620 5756  Serenum - ok
11:24:04.0640 5756  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:24:04.0641 5756  Serial - ok
11:24:04.0667 5756  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
11:24:04.0668 5756  sermouse - ok
11:24:04.0730 5756  [ 668043F192AB9659761A349A4703600D ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
11:24:04.0733 5756  ServiceLayer - ok
11:24:04.0762 5756  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
11:24:04.0764 5756  SessionEnv - ok
11:24:04.0773 5756  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
11:24:04.0773 5756  sffdisk - ok
11:24:04.0783 5756  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
11:24:04.0784 5756  sffp_mmc - ok
11:24:04.0793 5756  [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
11:24:04.0794 5756  sffp_sd - ok
11:24:04.0797 5756  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
11:24:04.0798 5756  sfloppy - ok
11:24:04.0850 5756  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:24:04.0853 5756  SharedAccess - ok
11:24:04.0867 5756  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:24:04.0870 5756  ShellHWDetection - ok
11:24:04.0895 5756  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:24:04.0895 5756  SiSRaid2 - ok
11:24:04.0908 5756  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
11:24:04.0908 5756  SiSRaid4 - ok
11:24:05.0041 5756  [ EB17DF573B4423DF0B3B2EE3B268A6DE ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:24:05.0055 5756  Skype C2C Service - ok
11:24:05.0109 5756  [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
11:24:05.0110 5756  SkypeUpdate - ok
11:24:05.0142 5756  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:24:05.0143 5756  Smb - ok
11:24:05.0177 5756  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:24:05.0179 5756  SNMPTRAP - ok
11:24:05.0189 5756  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:24:05.0189 5756  spldr - ok
11:24:05.0227 5756  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
11:24:05.0231 5756  Spooler - ok
11:24:05.0290 5756  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
11:24:05.0306 5756  sppsvc - ok
11:24:05.0329 5756  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:24:05.0331 5756  sppuinotify - ok
11:24:05.0353 5756  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:24:05.0356 5756  srv - ok
11:24:05.0368 5756  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:24:05.0370 5756  srv2 - ok
11:24:05.0393 5756  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
11:24:05.0395 5756  SrvHsfHDA - ok
11:24:05.0425 5756  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
11:24:05.0432 5756  SrvHsfV92 - ok
11:24:05.0452 5756  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
11:24:05.0455 5756  SrvHsfWinac - ok
11:24:05.0477 5756  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:24:05.0478 5756  srvnet - ok
11:24:05.0502 5756  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:24:05.0504 5756  SSDPSRV - ok
11:24:05.0512 5756  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:24:05.0514 5756  SstpSvc - ok
11:24:05.0582 5756  [ 463E33B1EA7AF1E6EB87B66B831DB41A ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
11:24:05.0584 5756  STacSV - ok
11:24:05.0629 5756  Steam Client Service - ok
11:24:05.0652 5756  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
11:24:05.0652 5756  stexstor - ok
11:24:05.0682 5756  [ 4304B75094E106FB5423A290C95841E5 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
11:24:05.0685 5756  STHDA - ok
11:24:05.0719 5756  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
11:24:05.0724 5756  stisvc - ok
11:24:05.0736 5756  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
11:24:05.0737 5756  swenum - ok
11:24:05.0768 5756  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
11:24:05.0772 5756  swprv - ok
11:24:05.0842 5756  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
11:24:05.0844 5756  SynTP - ok
11:24:05.0876 5756  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
11:24:05.0885 5756  SysMain - ok
11:24:05.0905 5756  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:24:05.0907 5756  TabletInputService - ok
11:24:05.0922 5756  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:24:05.0925 5756  TapiSrv - ok
11:24:05.0939 5756  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
11:24:05.0941 5756  TBS - ok
11:24:05.0999 5756  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:24:06.0009 5756  Tcpip - ok
11:24:06.0039 5756  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:24:06.0048 5756  TCPIP6 - ok
11:24:06.0069 5756  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:24:06.0070 5756  tcpipreg - ok
11:24:06.0089 5756  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:24:06.0090 5756  TDPIPE - ok
11:24:06.0116 5756  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:24:06.0117 5756  TDTCP - ok
11:24:06.0132 5756  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:24:06.0133 5756  tdx - ok
11:24:06.0151 5756  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
11:24:06.0152 5756  TermDD - ok
11:24:06.0175 5756  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
11:24:06.0180 5756  TermService - ok
11:24:06.0195 5756  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
11:24:06.0196 5756  Themes - ok
11:24:06.0222 5756  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
11:24:06.0223 5756  THREADORDER - ok
11:24:06.0235 5756  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
11:24:06.0237 5756  TrkWks - ok
11:24:06.0277 5756  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:24:06.0278 5756  TrustedInstaller - ok
11:24:06.0293 5756  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:24:06.0294 5756  tssecsrv - ok
11:24:06.0317 5756  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:24:06.0318 5756  tunnel - ok
11:24:06.0342 5756  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
11:24:06.0343 5756  uagp35 - ok
11:24:06.0360 5756  [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:24:06.0362 5756  udfs - ok
11:24:06.0432 5756  [ 930039DD2900CFA8C33F1A7919223547 ] UI Assistant Service C:\Program Files (x86)\TATA DOCOMO 3G\AssistantServices.exe
11:24:06.0433 5756  UI Assistant Service - ok
11:24:06.0455 5756  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:24:06.0457 5756  UI0Detect - ok
11:24:06.0469 5756  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
11:24:06.0470 5756  uliagpkx - ok
11:24:06.0482 5756  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:24:06.0483 5756  umbus - ok
11:24:06.0499 5756  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
11:24:06.0500 5756  UmPass - ok
11:24:06.0596 5756  [ 0FADD949576A164B4E51E716F46B6C33 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:24:06.0607 5756  UNS - ok
11:24:06.0634 5756  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
11:24:06.0637 5756  upnphost - ok
11:24:06.0662 5756  [ 4E93C8496359E97830C75AC36393654D ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
11:24:06.0663 5756  upperdev - ok
11:24:06.0679 5756  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:24:06.0680 5756  usbccgp - ok
11:24:06.0707 5756  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
11:24:06.0708 5756  usbcir - ok
11:24:06.0721 5756  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
11:24:06.0722 5756  usbehci - ok
11:24:06.0733 5756  [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:24:06.0735 5756  usbhub - ok
11:24:06.0748 5756  [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
11:24:06.0749 5756  usbohci - ok
11:24:06.0764 5756  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:24:06.0765 5756  usbprint - ok
11:24:06.0806 5756  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:24:06.0807 5756  usbscan - ok
11:24:06.0837 5756  [ 0F0C72A657C622286013788B886968AD ] usbser          C:\Windows\system32\drivers\usbser.sys
11:24:06.0838 5756  usbser - ok
11:24:06.0858 5756  [ 8844CB19A37B65E27049D4A7786726A9 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
11:24:06.0859 5756  UsbserFilt - ok
11:24:06.0876 5756  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:24:06.0877 5756  USBSTOR - ok
11:24:06.0912 5756  [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:24:06.0912 5756  usbuhci - ok
11:24:06.0934 5756  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
11:24:06.0935 5756  usbvideo - ok
11:24:06.0954 5756  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
11:24:06.0956 5756  UxSms - ok
11:24:06.0968 5756  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
11:24:06.0970 5756  VaultSvc - ok
11:24:07.0004 5756  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
11:24:07.0004 5756  vdrvroot - ok
11:24:07.0018 5756  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
11:24:07.0022 5756  vds - ok
11:24:07.0037 5756  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:24:07.0038 5756  vga - ok
11:24:07.0049 5756  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:24:07.0050 5756  VgaSave - ok
11:24:07.0067 5756  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
11:24:07.0068 5756  vhdmp - ok
11:24:07.0082 5756  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
11:24:07.0082 5756  viaide - ok
11:24:07.0151 5756  [ DB7C02A1E368B9F4CB50905D1C1E80A4 ] VodafoneConnectorService C:\Program Files (x86)\Vodafone\Via The Phone\VodafoneConnectorService.exe
11:24:07.0153 5756  VodafoneConnectorService - ok
11:24:07.0199 5756  [ 3059B9A217455169D6C90215F3E942D6 ] VodafoneWatcherService C:\Program Files (x86)\Vodafone\Smartplug\VodafoneWatcher.exe
11:24:07.0200 5756  VodafoneWatcherService - ok
11:24:07.0221 5756  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
11:24:07.0222 5756  volmgr - ok
11:24:07.0238 5756  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:24:07.0240 5756  volmgrx - ok
11:24:07.0272 5756  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:24:07.0274 5756  volsnap - ok
11:24:07.0298 5756  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
11:24:07.0299 5756  vsmraid - ok
11:24:07.0338 5756  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
11:24:07.0347 5756  VSS - ok
11:24:07.0357 5756  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:24:07.0358 5756  vwifibus - ok
11:24:07.0366 5756  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:24:07.0367 5756  vwififlt - ok
11:24:07.0386 5756  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
11:24:07.0389 5756  W32Time - ok
11:24:07.0405 5756  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
11:24:07.0406 5756  WacomPen - ok
11:24:07.0432 5756  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:24:07.0433 5756  WANARP - ok
11:24:07.0449 5756  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:24:07.0450 5756  Wanarpv6 - ok
11:24:07.0493 5756  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:24:07.0499 5756  WatAdminSvc - ok
11:24:07.0542 5756  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
11:24:07.0550 5756  wbengine - ok
11:24:07.0571 5756  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:24:07.0574 5756  WbioSrvc - ok
11:24:07.0596 5756  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:24:07.0599 5756  wcncsvc - ok
11:24:07.0613 5756  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:24:07.0615 5756  WcsPlugInService - ok
11:24:07.0634 5756  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
11:24:07.0635 5756  Wd - ok
11:24:07.0673 5756  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:24:07.0677 5756  Wdf01000 - ok
11:24:07.0695 5756  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:24:07.0697 5756  WdiServiceHost - ok
11:24:07.0701 5756  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:24:07.0703 5756  WdiSystemHost - ok
11:24:07.0727 5756  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
11:24:07.0730 5756  WebClient - ok
11:24:07.0746 5756  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:24:07.0748 5756  Wecsvc - ok
11:24:07.0762 5756  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:24:07.0764 5756  wercplsupport - ok
11:24:07.0782 5756  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:24:07.0785 5756  WerSvc - ok
11:24:07.0792 5756  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:24:07.0792 5756  WfpLwf - ok
11:24:07.0809 5756  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:24:07.0810 5756  WIMMount - ok
11:24:07.0838 5756  WinDefend - ok
11:24:07.0845 5756  WinHttpAutoProxySvc - ok
11:24:07.0891 5756  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:24:07.0892 5756  Winmgmt - ok
11:24:07.0950 5756  [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0  C:\Program Files (x86)\BatteryCare\WinRing0x64.sys
11:24:07.0951 5756  WinRing0_1_2_0 - ok
11:24:07.0996 5756  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:24:08.0006 5756  WinRM - ok
11:24:08.0054 5756  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:24:08.0054 5756  WinUsb - ok
11:24:08.0081 5756  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:24:08.0086 5756  Wlansvc - ok
11:24:08.0182 5756  [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:24:08.0192 5756  wlidsvc - ok
11:24:08.0218 5756  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
11:24:08.0219 5756  WmiAcpi - ok
11:24:08.0237 5756  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:24:08.0238 5756  wmiApSrv - ok
11:24:08.0262 5756  WMPNetworkSvc - ok
11:24:08.0296 5756  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:24:08.0298 5756  WPCSvc - ok
11:24:08.0310 5756  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:24:08.0312 5756  WPDBusEnum - ok
11:24:08.0334 5756  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:24:08.0335 5756  ws2ifsl - ok
11:24:08.0363 5756  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\Windows\system32\wscsvc.dll
11:24:08.0365 5756  wscsvc - ok
11:24:08.0368 5756  WSearch - ok
11:24:08.0454 5756  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:24:08.0467 5756  wuauserv - ok
11:24:08.0501 5756  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:24:08.0502 5756  WudfPf - ok
11:24:08.0534 5756  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:24:08.0535 5756  WUDFRd - ok
11:24:08.0583 5756  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:24:08.0585 5756  wudfsvc - ok
11:24:08.0615 5756  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:24:08.0617 5756  WwanSvc - ok
11:24:08.0658 5756  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
11:24:08.0660 5756  yukonw7 - ok
11:24:08.0679 5756  ZTEusbmdm6k - ok
11:24:08.0705 5756  ZTEusbnmea - ok
11:24:08.0710 5756  ZTEusbser6k - ok
11:24:08.0731 5756  ================ Scan global ===============================
11:24:08.0750 5756  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:24:08.0774 5756  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
11:24:08.0780 5756  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
11:24:08.0807 5756  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:24:08.0830 5756  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:24:08.0832 5756  [Global] - ok
11:24:08.0833 5756  ================ Scan MBR ==================================
11:24:08.0845 5756  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:24:09.0201 5756  \Device\Harddisk0\DR0 - ok
11:24:09.0201 5756  ================ Scan VBR ==================================
11:24:09.0203 5756  [ 7046791F27634AD089DED052D6B766EC ] \Device\Harddisk0\DR0\Partition1
11:24:09.0205 5756  \Device\Harddisk0\DR0\Partition1 - ok
11:24:09.0325 5756  [ C0F3C4CF0918EC2A3671DF0D6BEA5B4D ] \Device\Harddisk0\DR0\Partition2
11:24:09.0327 5756  \Device\Harddisk0\DR0\Partition2 - ok
11:24:09.0345 5756  [ 574606E3AB9B0D149C7D43BF1B98303B ] \Device\Harddisk0\DR0\Partition3
11:24:09.0346 5756  \Device\Harddisk0\DR0\Partition3 - ok
11:24:09.0373 5756  [ E7AD71726CBC36036B166E60645F036F ] \Device\Harddisk0\DR0\Partition4
11:24:09.0374 5756  \Device\Harddisk0\DR0\Partition4 - ok
11:24:09.0375 5756  ============================================================
11:24:09.0375 5756  Scan finished
11:24:09.0375 5756  ============================================================
11:24:09.0384 5704  Detected object count: 0
11:24:09.0384 5704  Actual detected object count: 0
11:24:30.0202 2868  Deinitialize success
 

 

 

 

 

# AdwCleaner v2.303 - Logfile creato il 13/06/2013 alle 11:25:55
# Aggiornamento 08/06/2013 by Xplode
# Sistema Operativo : Windows 7 Home Premium  (64 bits)
# Utente : IreAle - NOWEHERELAND
# Modalità Avvio : Modalità Normale
# Eseguito da : C:\Users\IreAle\Downloads\AdwCleaner.exe
# Opzioni [Elimina]
 
 
***** [Servizi] *****
 
Fermato & Eliminato : DvmMDES
 
***** [File / Cartelle] *****
 
Cartella Eliminato : C:\Program Files (x86)\1ClickDownload
Cartella Eliminato : C:\Program Files (x86)\Conduit
Cartella Eliminato : C:\Program Files (x86)\FreeRIP3
Cartella Eliminato : C:\Program Files (x86)\uTorrentBar_IT
Cartella Eliminato : C:\Program Files (x86)\yourfiledownloader
Cartella Eliminato : C:\ProgramData\InstallMate
Cartella Eliminato : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeRIP3
Cartella Eliminato : C:\Users\IreAle\AppData\Local\Conduit
Cartella Eliminato : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdghcmanhfigpijjllopocpcnjffkhl
Cartella Eliminato : C:\Users\IreAle\AppData\Local\PackageAware
Cartella Eliminato : C:\Users\IreAle\AppData\Local\Temp\CT2851640
Cartella Eliminato : C:\Users\IreAle\AppData\LocalLow\Conduit
Cartella Eliminato : C:\Users\IreAle\AppData\LocalLow\uTorrentBar_IT
Cartella Eliminato : C:\Users\IreAle\AppData\Roaming\DriverCure
Cartella Eliminato : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\CT2851640
Cartella Eliminato : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\extensions\{4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1}
Cartella Eliminato : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\extensions\plugin@selectionlinks.com
Cartella Eliminato : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\jetpack
Cartella Eliminato : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\Smartbar
Cartella Eliminato : C:\Users\IreAle\AppData\Roaming\yourfiledownloader
Eliminato al riavvio : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdghcmanhfigpijjllopocpcnjffkhl
File Eliminato : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Eliminato : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
File Eliminato : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\searchplugins\Conduit.xml
 
***** [Registro] *****
 
Chiave Eliminata : HKCU\Software\1ClickDownload
Chiave Eliminata : HKCU\Software\AppDataLow\Software\Conduit
Chiave Eliminata : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Chiave Eliminata : HKCU\Software\AppDataLow\Software\SmartBar
Chiave Eliminata : HKCU\Software\AppDataLow\Software\uTorrentBar_IT
Chiave Eliminata : HKCU\Software\AppDataLow\Toolbar
Chiave Eliminata : HKCU\Software\Conduit
Chiave Eliminata : HKCU\Software\Google\Chrome\Extensions\ncdghcmanhfigpijjllopocpcnjffkhl
Chiave Eliminata : HKCU\Software\Softonic
Chiave Eliminata : HKCU\Software\YourFileDownloader
Chiave Eliminata : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Chiave Eliminata : HKLM\Software\Classes\Installer\Features\54A306F2659DB694185B057D28249467
Chiave Eliminata : HKLM\Software\Classes\Installer\Products\54A306F2659DB694185B057D28249467
Chiave Eliminata : HKLM\SOFTWARE\Classes\Toolbar.CT2851640
Chiave Eliminata : HKLM\SOFTWARE\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}
Chiave Eliminata : HKLM\Software\Conduit
Chiave Eliminata : HKLM\Software\DeviceVM
Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{854145C6-B95A-408D-BE86-367DC393A219}
Chiave Eliminata : HKLM\Software\uTorrentBar_IT
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{854145C6-B95A-408D-BE86-367DC393A219}
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ncdghcmanhfigpijjllopocpcnjffkhl
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{02058D7E-08E5-4A84-AF96-794D8AF35725}
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3BC958AF-A157-49C3-BDE1-BD73BD3084EB}
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar_IT Toolbar
Chiave Eliminata : HKLM\Software\YourFileDownloader
Valore Eliminata : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}]
Valore Eliminata : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}]
Valore Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}]
 
***** [Browser Internet] *****
 
-\\ Internet Explorer v8.0.7600.17267
 
[OK] Registro Pulito.
 
-\\ Mozilla Firefox v9.0.1 (it)
 
File : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\prefs.js
 
Eliminata : user_pref("CT2851640.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Eliminata : user_pref("CT2851640.FF19Solved", "true");
Eliminata : user_pref("CT2851640.FirstTime", "true");
Eliminata : user_pref("CT2851640.FirstTimeFF3", "true");
Eliminata : user_pref("CT2851640.UserID", "UN55110609578629120");
Eliminata : user_pref("CT2851640.addressUrlXPETakeover", "true");
Eliminata : user_pref("CT2851640.autoDisableScopes", 0);
Eliminata : user_pref("CT2851640.browser.search.defaultthis.engineName", "true");
Eliminata : user_pref("CT2851640.defaultSearchXPETakeover", "true");
Eliminata : user_pref("CT2851640.enableSearchFromAddressBar", "true");
Eliminata : user_pref("CT2851640.fixPageNotFoundError", "true");
Eliminata : user_pref("CT2851640.fixUrls", true);
Eliminata : user_pref("CT2851640.installDate", "27/5/2013 18:31:13");
Eliminata : user_pref("CT2851640.installId", "fft671C.tmp.exe");
Eliminata : user_pref("CT2851640.installType", "XPE");
Eliminata : user_pref("CT2851640.installUsage", "27/5/2013 18:31:11");
Eliminata : user_pref("CT2851640.installUsageEarly", "27/5/2013 18:31:11");
Eliminata : user_pref("CT2851640.installerVersion", "1.3.7.3");
Eliminata : user_pref("CT2851640.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Eliminata : user_pref("CT2851640.isPerformedSmartBarTransition", "true");
Eliminata : user_pref("CT2851640.keyword", "true");
Eliminata : user_pref("CT2851640.openThankYouPage", "true");
Eliminata : user_pref("CT2851640.openUninstallPage", "FALSE");
Eliminata : user_pref("CT2851640.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Eliminata : user_pref("CT2851640.settingsINI", true);
Eliminata : user_pref("CT2851640.shouldFirstTimeDialog", "false");
Eliminata : user_pref("CT2851640.smartbar.CTID", "CT2851640");
Eliminata : user_pref("CT2851640.smartbar.Uninstall", "0");
Eliminata : user_pref("CT2851640.smartbar.homepage", "true");
Eliminata : user_pref("CT2851640.smartbar.toolbarName", "uTorrentBar_IT ");
Eliminata : user_pref("CT2851640.startPage", "TRUE");
Eliminata : user_pref("CT2851640.startPageXPETakeover", "true");
Eliminata : user_pref("CT2851640.toolbarBornServerTime", "13-11-2012");
Eliminata : user_pref("CT2851640.toolbarCurrentServerTime", "13-11-2012");
Eliminata : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Eliminata : user_pref("browser.search.defaultthis.engineName", "uTorrentBar_IT Customized Web Search");
Eliminata : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851640&CUI[...]
Eliminata : user_pref("browser.search.selectedEngine", "uTorrentBar_IT Customized Web Search");
Eliminata : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT2851640&CUI=UN5511060957862[...]
Eliminata : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851640&SearchSource=2&CU[...]
Eliminata : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT2851640&CUI=UN551106095[...]
Eliminata : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Eliminata : user_pref("smartbar.originalHomepage", "about:home");
Eliminata : user_pref("smartbar.originalSearchAddressUrl", "");
Eliminata : user_pref("smartbar.originalSearchEngine", "");
 
File : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\prefs.js
 
[OK] File Pulito.
 
-\\ Google Chrome v27.0.1453.110
 
File : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Eliminata [l.30] : icon_url = "hxxp://search.conduit.com/fav.ico",
Eliminata [l.33] : keyword = "search.conduit.com",
Eliminata [l.37] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=UN25[...]
Eliminata [l.38] : suggest_url = "hxxp://suggest.search.conduit.com/Suggest.ashx?q=[{searchTerms}]"
Eliminata [l.2032] : homepage = "hxxp://search.conduit.com/?ctid=CT2851640&SearchSource=48&CUI=UN25280100814670524&UM[...]
Eliminata [l.2448] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT2851640&SearchSource=48&CUI[...]
 
File : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Eliminata [l.30] : icon_url = "hxxp://search.conduit.com/fav.ico",
Eliminata [l.33] : keyword = "search.conduit.com",
Eliminata [l.37] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=UN25[...]
Eliminata [l.38] : suggest_url = "hxxp://suggest.search.conduit.com/Suggest.ashx?q=[{searchTerms}]"
Eliminata [l.2032] : homepage = "hxxp://search.conduit.com/?ctid=CT2851640&SearchSource=48&CUI=UN25280100814670524&UM[...]
Eliminata [l.2448] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT2851640&SearchSource=48&CUI[...]
 
-\\ Opera v12.1.1532.0
 
File : C:\Users\IreAle\AppData\Roaming\Opera\Opera\operaprefs.ini
 
[OK] File Pulito.
 
File : C:\Users\IreAle\AppData\Roaming\Opera\Opera\operaprefs.ini
 
[OK] File Pulito.
 
*************************
 
AdwCleaner[S2].txt - [10949 octets] - [13/06/2013 11:25:55]
 
########## EOF - C:\AdwCleaner[S2].txt - [11010 octets] ##########
 

 

 

 

 

C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EJOGQVO5\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCS13R15\ApnIC[2].0 a variant of Win32/Bundled.Toolbar.Ask application
C:\Program Files (x86)\Avira\AntiVir Desktop\apnic.dll a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Avira\AntiVir Desktop\apntoolbarinstaller.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting (after the next restart) - quarantined
C:\Users\IreAle\Downloads\7ZipSetup-eKBmRZP.exe a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\IreAle\Downloads\AnySendSetup (1).exe a variant of Win32/InstallCore.BQ application cleaned by deleting - quarantined
C:\Users\IreAle\Downloads\AnySendSetup.exe a variant of Win32/InstallCore.BQ application cleaned by deleting - quarantined
C:\Users\IreAle\Downloads\CodecPack (1).exe Win32/InstallCore.BN.Gen application cleaned by deleting - quarantined
C:\Users\IreAle\Downloads\CodecPack.exe Win32/InstallCore.BN.Gen application cleaned by deleting - quarantined
C:\Users\IreAle\Downloads\FoxitReader543.09201_enu_Setup (1).exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
C:\Users\IreAle\Downloads\MediaInfo_GUI_0.7.63_Windows.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\IreAle\Downloads\SoftonicDownloader_for_windows-live-movie-maker.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EJOGQVO5\ApnIC[1].0 a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCS13R15\ApnIC[2].0 a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
C:\Windows\temp\AskSLib.dll a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
F:\Ale\avira_antivir_personal_it.exe a variant of Win32/Bundled.Toolbar.Ask application deleted - quarantined
F:\Ale\Nabu\FOTO\Foto, video e immagini\Nokioware (programmi e altro...\Progz\biscompute.instantsis.v1.00.s60 (per trasferire giochi e app su altri cell).sis a variant of SymbOS/KillPhone.E trojan deleted - quarantined
F:\Ale\Nabu\Vecchi prog Nokiovo\Lonely.Cat.Games.LCGJukebox.v2.11.S60.SymbianOS.Cracked-BiNPDA.rar a variant of SymbOS/KillPhone.E trojan deleted - quarantined
F:\Ale\Programmi\DTLite4413-0173.exe Win32/OpenCandy application cleaned by deleting - quarantined
F:\Dati comuni\hwmonitor_1.18-setup.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
F:\Dati comuni\SetupBatteryCare (1).zip Win32/OpenCandy application deleted - quarantined
F:\Dati comuni\SetupBatteryCare.zip Win32/OpenCandy application deleted - quarantined


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:10 PM

Posted 13 June 2013 - 09:06 PM

OK, looks like we hit it .
I suspect you infected yourself from torrent downloads.

In Control Panel uninstall... Java 7 Update 9 (Version: 7.0.90)
Old versions are exploitable by malware.
Reboot
Install Java Version 7 Update 21
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 nabu

nabu
  • Topic Starter

  • Members
  • 110 posts
  • OFFLINE
  •  
  • Local time:08:10 PM

Posted 14 June 2013 - 04:24 AM

I removed and installed the new java!!

 

So do you think i'm clean now?



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:10 PM

Posted 14 June 2013 - 12:39 PM

Looks good to go to me. :thumbup2:


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 nabu

nabu
  • Topic Starter

  • Members
  • 110 posts
  • OFFLINE
  •  
  • Local time:08:10 PM

Posted 15 June 2013 - 05:31 AM

Yeah!!!

 

So thank you so much!!!  :thumbup2:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users