Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Advertising malware and google redirect


  • Please log in to reply
3 replies to this topic

#1 katrin13

katrin13

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:25 PM

Posted 18 June 2013 - 08:32 PM

Hi everybodyy,

 

my laptop is infected with some kind of malware that I just can't seem to get rid off. I run Windows Vista and use Yahoo as my homepage. When I go to Yahoo lately, there are some extra advertisements on the page. Some are by "mediaforce", others alert me that I need to update flashplayer or want me to download antivirus software. This advertisements are right underneath the search bar. Additionally, at various times I notice my cursor does not change into a hand when on a link, but stays a pointer. At this point, when I click with my mouse anywhere on the webpage I'm on (link or not), a new window will open up, mostly from srvey.net or trustedoffer.com with some kind of survey to fill out.

I use avast as antivirus software, but  it didn't find any problems when I did a system scan. I also use spybot, and a scan with spybot revealed a host of problems. This is what spybot found: Burst Media, Double Click, Fast Click, Media Plex, Casale Media, Right Media, Web Trends live, and Zedo. I had spybot fix all problems, and for a few hours all seemed well. Then the same problem was back. Another scan with spybot, and it found many of the same problems had returned. Every time spybot fixes them, they come right back.

I also ran a scan with Malwarebytes, but it didn't find any infections.

Please help!

 

Thank you,

Katrin.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:25 PM

Posted 18 June 2013 - 10:31 PM

Hello katrin.. I would ike to run these and see how it is after.
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results.
 
Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 katrin13

katrin13
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:25 PM

Posted 19 June 2013 - 05:16 PM

Hi boopme,

 

thanks for your reply. I did all the things you asked, and ESET did find some infections that it quarantined, however, that did not fix my problem. I still have those extra advertisements on my homepage and am at times redirected to advertising websites. I am attaching the logs for you to view.

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Owner (administrator) on 19-06-2013 at 10:19:27
Running from "C:\Users\Owner\Desktop"
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1             localhost

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® Wireless WiFi Link 4965AGN = Wireless Network Connection (Connected)
Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Mitchells
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Wireless WiFi Link 4965AGN
   Physical Address. . . . . . . . . : 00-1F-3B-0E-25-F7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::bc3b:c94c:96d1:c1d1%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.10(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, June 18, 2013 8:47:44 AM
   Lease Expires . . . . . . . . . . : Wednesday, June 19, 2013 11:01:36 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 318774752
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0F-B5-69-34-00-1A-80-7E-68-3B
   DNS Servers . . . . . . . . . . . : 68.105.28.12
                                       68.105.29.12
                                       68.105.28.11
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
   Physical Address. . . . . . . . . : 00-1A-80-7E-68-3B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{F48BF280-D28A-4C80-B8F2-522BFE139E21}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns2.cox.net
Address:  68.105.28.12

Name:    google.com
Addresses:  2001:4860:4007:801::1007
   74.125.224.206
   74.125.224.192
   74.125.224.193
   74.125.224.194
   74.125.224.195
   74.125.224.196
   74.125.224.197
   74.125.224.198
   74.125.224.199
   74.125.224.200
   74.125.224.201

 

Pinging google.com [74.125.239.14] with 32 bytes of data:

Reply from 74.125.239.14: bytes=32 time=93ms TTL=50

Reply from 74.125.239.14: bytes=32 time=95ms TTL=50

 

Ping statistics for 74.125.239.14:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 93ms, Maximum = 95ms, Average = 94ms

Server:  cdns2.cox.net
Address:  68.105.28.12

Name:    yahoo.com
Addresses:  98.138.253.109
   98.139.183.24
   206.190.36.45

 

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

Reply from 98.138.253.109: bytes=32 time=86ms TTL=53

Reply from 98.138.253.109: bytes=32 time=68ms TTL=53

 

Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 68ms, Maximum = 86ms, Average = 77ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
 11 ...00 1f 3b 0e 25 f7 ...... Intel® Wireless WiFi Link 4965AGN
 10 ...00 1a 80 7e 68 3b ...... Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
  1 ........................... Software Loopback Interface 1
 18 ...00 00 00 00 00 00 00 e0  isatap.{F48BF280-D28A-4C80-B8F2-522BFE139E21}
 14 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #2
 17 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.10     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.10    281
     192.168.0.10  255.255.255.255         On-link      192.168.0.10    281
    192.168.0.255  255.255.255.255         On-link      192.168.0.10    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.10    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.10    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 11    281 fe80::/64                On-link
 11    281 fe80::bc3b:c94c:96d1:c1d1/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog5 08 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/18/2013 07:57:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 16567

Error: (06/18/2013 07:57:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 16567

Error: (06/18/2013 07:57:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/18/2013 07:57:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8907

Error: (06/18/2013 07:57:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8907

Error: (06/18/2013 07:57:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/18/2013 07:57:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7706

Error: (06/18/2013 07:57:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7706

Error: (06/18/2013 07:57:02 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/18/2013 07:57:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6505

System errors:
=============
Error: (06/18/2013 02:43:33 AM) (Source: Dhcp) (User: )
Description: Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 001F3B0E25F7.  The following error occurred:
%%1223. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Error: (06/17/2013 10:33:44 AM) (Source: DCOM) (User: )
Description: {ABC01078-F197-4B0B-ADBC-CFE684B39C82}

Error: (06/17/2013 10:32:48 AM) (Source: Service Control Manager) (User: )
Description: 30000Google Software Updater

Error: (06/17/2013 10:32:48 AM) (Source: DCOM) (User: )
Description: 1053gusvc{89DAE4CD-9F17-4980-902A-99BA84A8F5C8}

Error: (06/17/2013 10:31:56 AM) (Source: Dhcp) (User: )
Description: Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 001F3B0E25F7.  The following error occurred:
%%1223. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Error: (06/16/2013 00:33:59 PM) (Source: Service Control Manager) (User: )
Description: 30000VzCdbSvc

Error: (06/16/2013 09:59:22 AM) (Source: Dhcp) (User: )
Description: Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 001F3B0E25F7.  The following error occurred:
%%1223. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Error: (06/15/2013 03:37:50 AM) (Source: Service Control Manager) (User: )
Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86

Error: (06/15/2013 03:35:22 AM) (Source: Service Control Manager) (User: )
Description: BrParParallel arbitrator

Error: (06/15/2013 03:35:22 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Microsoft Office Sessions:
=========================
Error: (08/28/2012 00:00:08 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 79 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (06/01/2011 08:28:34 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6550.5004, Microsoft Office Version: 12.0.6425.1000. This session lasted 54 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (01/09/2011 03:55:48 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 15 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (01/09/2011 03:55:11 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 24 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (12/21/2010 05:07:30 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 133 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (10/25/2010 08:03:53 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 158 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (09/13/2010 07:13:42 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 52 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (08/17/2010 08:29:47 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 46 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (08/16/2010 08:42:10 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 1729 seconds with 60 seconds of active time.  This session ended with a crash.

Error: (08/16/2010 08:13:13 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 43 seconds with 0 seconds of active time.  This session ended with a crash.

CodeIntegrity Errors:
===================================
  Date: 2013-06-18 20:53:21.912
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 20:53:21.225
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 20:53:20.492
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 20:53:19.774
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 20:52:45.816
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 20:52:45.123
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 20:52:44.459
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 20:52:43.771
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-05 22:48:09.014
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\igdumd32.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-03-05 22:48:08.188
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\igdumd32.dll because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
3DVIA player 5.0 (Version: 5.0.0.15)
Acrobat.com (Version: 1.6.65)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Ad-Aware Security Add-on (Version: 3.0.0.6)
Adobe AIR (Version: 3.7.0.1860)
Adobe Flash Player 10 Plugin (Version: 10.0.32.18)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Reader 9.5.5 (Version: 9.5.5)
Adobe Shockwave Player 11.5 (Version: 11.5.9.615)
Apple Application Support (Version: 1.3.0)
Apple Mobile Device Support (Version: 3.1.0.62)
Apple Software Update (Version: 2.1.2.120)
ApproveIt Desktop 5.9 (Version: 5.90.167.1000)
ArcSoft Magic-i Visual Effects
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
ArcSoft Print Creations (Version: 2.8.255.384)
Arthur's Pet Chase
avast! Free Antivirus (Version: 8.0.1489.0)
BlackBox (Version: 1.00.000)
Blue's 123 Time Activities
Bonjour (Version: 2.0.2.0)
Brother HL-5040 (Version: 1.00)
Catz (remove only)
CCScore (Version: 8.02.0000.0001)
Click to Disc (Version: 1.0.00.11080)
Click to Disc Editor (Version: 1.0.00)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conduit Engine  (Version: )
Corel Paint Shop Pro Photo X2 (Version: 12.001.0000)
Crackle Screen Saver 1.0 (Version: 1.0)
Crystal Reports 2008 Runtime SP1 (Version: 12.1.0.882)
DefaultTab (Version: 2.2.3.0)
DivX Setup (Version: 2.6.1.9)
DownloadTerms (Version: 1.0)
ESSBrwr (Version: 8.02.0000.0001)
ESSCDBK (Version: 8.02.0000.0001)
ESScore (Version: 8.02.0000.0001)
ESSgui (Version: 8.02.0000.0001)
ESSini (Version: 8.02.0000.0001)
ESSPCD (Version: 8.02.0000.0001)
ESSPDock (Version: 6.03.0001.0004)
ESSTOOLS (Version: 5.00.0000.0004)
essvatgt (Version: 8.00.0000.0001)
Facebook Plug-In
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
firedog advisor (Version: 2.1.13)
GearDrvs (Version: 1)
Google Chrome (Version: 27.0.1453.116)
Google Drive (Version: 1.9.4536.8202)
Google Earth (Version: 7.0.3.8542)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.145)
Google Updater (Version: 2.4.2432.1652)
HDAUDIO SoftV92 Data Fax Modem with SmartCP
Instant Mode (Version: 1.0.4)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 9.2.0.61)
Java 7 Update 17 (Version: 7.0.170)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
Kodak EasyShare software
LeapFrog Connect (Version: 2.9.1.11093)
LeapFrog Leapster2 Plugin (Version: 2.8.7.11034)
LeapFrog Tag Plugin (Version: 2.8.7.11034)
LimeWire 4.18.6 (Version: 4.18.6)
LiveUpdate 3.2 (Symantec Corporation) (Version: 3.2.0.68)
LiveUpdate Notice (Symantec Corporation) (Version: 1.4.5)
LocationFree Player (Version: 4.02.0000)
magicJack (Version: 2.0.6073.4413)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
McAfee Security Scan Plus (Version: 2.0.181.2)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Flight Simulator X (Version: 10.0.60905)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access 2007 (Version: 12.0.6612.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Standard 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server Compact 3.5 SP1 English (Version: 3.5.5692.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Move Media Player
Mozilla Firefox 20.0.1 (x86 en-US) (Version: 20.0.1)
Mozilla Maintenance Service (Version: 20.0.1)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Napster (Version: 3.8.2.5)
Napster Burn Engine (Version: 3.5.0000)
netbrdg (Version: 7.01.0000.0001)
Norton 360 (Version: 1.2.0.10)
Octoshape add-in for Adobe Flash Player
OfotoXMI (Version: 8.02.1000.0001)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OpenMG Limited Patch 4.7-07-15-19-01
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140)
PANTECH PC USB Modem Software (Version: 3.0.4.0823)
PaperPort Image Printer (Version: 1.00.0000)
PHOTOfunSTUDIO 5.1 HD Edition (Version: 5.01.127)
Pokémon Trading Card Game Online (Version: 1.0.0)
Prepware 2012 (Version: 1.0.0)
PureEdge Viewer 6.5
QuickBooks Simple Start 2008 (Version: 18.0.4001.606)
QuickTime (Version: 7.66.73.0)
Raptr
RealDownloader (Version: 1.3.2)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.2)
Realtek High Definition Audio Driver
RealUpgrade 1.1 (Version: 1.1.0)
Roxio Activation Module (Version: 1.0)
Roxio Easy Media Creator Home (Version: 9.1.095)
ScanSoft PaperPort 11 (Version: 11.1.0000)
SCR3xxx Smart Card Reader (Version: 8.35)
Setting Utility Series (Version: 3.1.00.09240)
SFR (Version: 8.01.0000.0001)
SHASTA (Version: 7.01.0000.0001)
skin0001 (Version: 8.02.0000.0001)
SKINXSDK (Version: 8.02.0000.0001)
Skype Click to Call (Version: 5.6.8442)
Skype™ 6.3 (Version: 6.3.105)
SmartDraw 2010
SonicStage Mastering Studio (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter Custom Preset (Version: 2.3)
SonicStage Mastering Studio Plugins (Version: 2.4)
Sony Video Shared Library (Version: 3.3.00)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
StarFlyers Royal Jewel Rescue
staticcr (Version: 8.02.0000.0001)
SupportSoft Assisted Service (Version: 15)
Synaptics Pointing Device Driver (Version: 9.1.13.0)
TuneUp Companion 2.4.8.5 (Version: 2.4.8.5)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster2 Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin) (Version: 2.8.7.11034)
VAIO Camera Capture Utility (Version: 2.7.03.09250)
VAIO Center Access Bar (Version: 1.00.1001)
VAIO Content Folder Setting (Version: 1.0.01.09270)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 2.1.00.09284)
VAIO Content Metadata Manager Setting (Version: 2.1.00.09281)
VAIO Content Metadata XML Interface Library (Version: 2.1.00.09202)
VAIO Control Center (Version: 2.1.00.09190)
VAIO DVD Menu Data Basic (Version: 1.0.00.08130)
VAIO Entertainment Center (Version: 3.00.1005)
VAIO Entertainment Platform (Version: 3.0.00.06280)
VAIO Event Service (Version: 3.3.00.11020)
VAIO Help and Support (Version: 4.10.1105.CRVP)
VAIO Launcher (Version: 1.1.00.09190)
VAIO Media (Version: 6.0.10)
VAIO Media 6.0 (Version: 6.0.10)
VAIO Media AC3 Decoder 1.0
VAIO Media Content Collection 6.0
VAIO Media Integrated Server 6.2
VAIO Media Redistribution 6.0 (Version: 6.0.10)
VAIO Media Registration Tool (Version: 6.0.10)
VAIO Media Registration Tool 6.0 (Version: 6.0.10)
VAIO Movie Story (Version: 1.1.00.10160)
VAIO Movie Story Template Data (Version: 1.1.00.09281)
VAIO MusicBox (Version: 1.1.02.12100)
VAIO MusicBox Sample Music (Version: 1.0.01.09210)
VAIO OOBE and Welcome Center (Version: 4.00.1115.US)
VAIO Original Function Setting (Version: 1.2.00.11100)
VAIO PC Wireless LAN Wizard (Version: 1.01.1015)
VAIO Power Management (Version: 2.3.01.10310)
VAIO Productivity Center (Version: 3.00.1015)
VAIO Security Center (Version: 6.00.1015)
VAIO Service Utility (Version: 1.2.0.0)
VAIO Startup Assistant (Version: 1.00.1019)
VAIO Survey (Version: 5.00.7207)
VAIO Update 3 (Version: 3.0.04.09200)
VAIO Wallpaper Contents (Version: 1.0.00.09200)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VPRINTOL (Version: 8.02.0000.0001)
Vuze (Version: 4.5)
Vuze Remote Toolbar (Version: 5.7.2.2)
WIDCOMM Bluetooth Software 6.1.0.2200 (Version: 6.1.0.2200)
Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0) (Version: 11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
WinDVD for VAIO (Version: 8.0-B8.411)
WIRELESS (Version: 8.02.0000.0001)
Wireless Switch Setting Utility (Version: 3.6.00.18210)
Zune (Version: 03.00.0532.00)
Zune Language Pack (ES) (Version: 03.00.0532.00)
Zune Language Pack (FR) (Version: 03.00.0532.00)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 3061.69 MB
Available physical RAM: 1644.15 MB
Total Pagefile: 6324.36 MB
Available Pagefile: 4657.73 MB
Total Virtual: 2047.88 MB
Available Virtual: 1959.32 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:224.75 GB) (Free:55.93 GB) NTFS

========================= Users: ========================================

User accounts for \\MITCHELLS

Administrator            Guest                    Owner                   

**** End of log ****

 

12:10:12.0152 7176  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:10:12.0762 7176  ============================================================
12:10:12.0762 7176  Current date / time: 2013/06/19 12:10:12.0762
12:10:12.0762 7176  SystemInfo:
12:10:12.0762 7176 
12:10:12.0762 7176  OS Version: 6.0.6002 ServicePack: 2.0
12:10:12.0762 7176  Product type: Workstation
12:10:12.0762 7176  ComputerName: MITCHELLS
12:10:12.0762 7176  UserName: Owner
12:10:12.0762 7176  Windows directory: C:\Windows
12:10:12.0762 7176  System windows directory: C:\Windows
12:10:12.0762 7176  Processor architecture: Intel x86
12:10:12.0762 7176  Number of processors: 2
12:10:12.0762 7176  Page size: 0x1000
12:10:12.0762 7176  Boot type: Normal boot
12:10:12.0762 7176  ============================================================
12:10:15.0192 7176  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:10:15.0232 7176  ============================================================
12:10:15.0232 7176  \Device\Harddisk0\DR0:
12:10:15.0232 7176  MBR partitions:
12:10:15.0232 7176  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1046000, BlocksNum 0x1C17F170
12:10:15.0232 7176  ============================================================
12:10:15.0292 7176  C: <-> \Device\Harddisk0\DR0\Partition1
12:10:15.0292 7176  ============================================================
12:10:15.0292 7176  Initialize success
12:10:15.0292 7176  ============================================================
12:10:41.0441 1612  ============================================================
12:10:41.0441 1612  Scan started
12:10:41.0441 1612  Mode: Manual; TDLFS;
12:10:41.0441 1612  ============================================================
12:10:42.0377 1612  ================ Scan system memory ========================
12:10:42.0377 1612  System memory - ok
12:10:42.0377 1612  ================ Scan services =============================
12:10:42.0546 1612  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
12:10:42.0556 1612  ACDaemon - ok
12:10:42.0696 1612  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
12:10:42.0696 1612  ACPI - ok
12:10:42.0786 1612  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:10:42.0786 1612  AdobeFlashPlayerUpdateSvc - ok
12:10:42.0846 1612  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:10:42.0856 1612  adp94xx - ok
12:10:42.0876 1612  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:10:42.0886 1612  adpahci - ok
12:10:42.0916 1612  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
12:10:42.0916 1612  adpu160m - ok
12:10:42.0936 1612  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:10:42.0946 1612  adpu320 - ok
12:10:42.0986 1612  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:10:42.0996 1612  AeLookupSvc - ok
12:10:43.0066 1612  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
12:10:43.0076 1612  AFD - ok
12:10:43.0136 1612  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:10:43.0136 1612  agp440 - ok
12:10:43.0176 1612  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
12:10:43.0186 1612  aic78xx - ok
12:10:43.0196 1612  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
12:10:43.0206 1612  ALG - ok
12:10:43.0226 1612  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:10:43.0226 1612  aliide - ok
12:10:43.0246 1612  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:10:43.0256 1612  amdagp - ok
12:10:43.0266 1612  [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide          C:\Windows\system32\drivers\amdide.sys
12:10:43.0276 1612  amdide - ok
12:10:43.0296 1612  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
12:10:43.0296 1612  AmdK7 - ok
12:10:43.0316 1612  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:10:43.0316 1612  AmdK8 - ok
12:10:43.0406 1612  [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS         C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
12:10:43.0416 1612  AOL ACS - ok
12:10:43.0476 1612  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
12:10:43.0476 1612  Appinfo - ok
12:10:43.0556 1612  [ 2E3E53A6AEF23E24F402C7855B9B1542 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:10:43.0566 1612  Apple Mobile Device - ok
12:10:43.0616 1612  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
12:10:43.0626 1612  arc - ok
12:10:43.0666 1612  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:10:43.0666 1612  arcsas - ok
12:10:43.0736 1612  [ 97422DA56910A24B7AC8D295F5FD9535 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
12:10:43.0746 1612  ArcSoftKsUFilter - ok
12:10:43.0806 1612  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
12:10:43.0806 1612  aswFsBlk - ok
12:10:43.0846 1612  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
12:10:43.0846 1612  aswMonFlt - ok
12:10:43.0866 1612  [ 7B43265F92257A21CBFD88E7A651044C ] aswRdr          C:\Windows\system32\drivers\aswRdr.sys
12:10:43.0876 1612  aswRdr - ok
12:10:43.0926 1612  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
12:10:43.0926 1612  aswRvrt - ok
12:10:43.0996 1612  [ 6CAB0A5991C5C0FC63F5E66593E71D7E ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
12:10:44.0006 1612  aswSnx - ok
12:10:44.0036 1612  [ 99102F60F344BEBAF4F6114514FD28D3 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
12:10:44.0046 1612  aswSP - ok
12:10:44.0096 1612  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
12:10:44.0096 1612  aswTdi - ok
12:10:44.0116 1612  [ 16B8E3CD50A460EC32CA680C8210A0A9 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
12:10:44.0126 1612  aswVmm - ok
12:10:44.0166 1612  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:10:44.0166 1612  AsyncMac - ok
12:10:44.0196 1612  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:10:44.0196 1612  atapi - ok
12:10:44.0266 1612  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:10:44.0276 1612  AudioEndpointBuilder - ok
12:10:44.0286 1612  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:10:44.0296 1612  Audiosrv - ok
12:10:44.0366 1612  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
12:10:44.0366 1612  avast! Antivirus - ok
12:10:44.0426 1612  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:10:44.0426 1612  Beep - ok
12:10:44.0496 1612  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
12:10:44.0506 1612  BFE - ok
12:10:44.0566 1612  [ ACC9C8C560C567FAD6F79C977AB2EA09 ] bgsvcgen        C:\Windows\System32\bgsvcgen.exe
12:10:44.0566 1612  bgsvcgen - ok
12:10:44.0646 1612  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\System32\qmgr.dll
12:10:44.0676 1612  BITS - ok
12:10:44.0716 1612  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
12:10:44.0716 1612  blbdrive - ok
12:10:44.0806 1612  [ 5AB58C337AC65837FE404462AD6265AB ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:10:44.0816 1612  Bonjour Service - ok
12:10:44.0846 1612  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:10:44.0846 1612  bowser - ok
12:10:44.0886 1612  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
12:10:44.0896 1612  BrFiltLo - ok
12:10:44.0926 1612  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
12:10:44.0926 1612  BrFiltUp - ok
12:10:44.0986 1612  [ C711ED965009BDCFF9AA62CEB6FF1AAD ] Brother XP spl Service C:\Windows\system32\brsvc01a.exe
12:10:44.0986 1612  Brother XP spl Service - ok
12:10:45.0016 1612  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
12:10:45.0016 1612  Browser - ok
12:10:45.0046 1612  [ 2FE6D5BE0629F706197B30C0AA05DE30 ] BrPar           C:\Windows\System32\drivers\BrPar.sys
12:10:45.0046 1612  BrPar - ok
12:10:45.0076 1612  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
12:10:45.0076 1612  Brserid - ok
12:10:45.0126 1612  [ 1A5FC78E41840EDF79D65EC16EFF2787 ] BrSerIf         C:\Windows\system32\Drivers\BrSerIf.sys
12:10:45.0136 1612  BrSerIf - ok
12:10:45.0176 1612  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
12:10:45.0176 1612  BrSerWdm - ok
12:10:45.0196 1612  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
12:10:45.0196 1612  BrUsbMdm - ok
12:10:45.0206 1612  [ A24C7B39602218F8DBDB2B6704325FC7 ] BrUsbSer        C:\Windows\system32\Drivers\BrUsbSer.sys
12:10:45.0216 1612  BrUsbSer - ok
12:10:45.0266 1612  [ 6D39C954799B63BA866910234CF7D726 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
12:10:45.0276 1612  BthEnum - ok
12:10:45.0316 1612  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:10:45.0316 1612  BTHMODEM - ok
12:10:45.0346 1612  [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
12:10:45.0346 1612  BthPan - ok
12:10:45.0406 1612  [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
12:10:45.0426 1612  BTHPORT - ok
12:10:45.0456 1612  [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ         C:\Windows\System32\bthserv.dll
12:10:45.0456 1612  BthServ - ok
12:10:45.0476 1612  [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
12:10:45.0486 1612  BTHUSB - ok
12:10:45.0516 1612  [ 7F256D9FFF384FAA40DF5DB1CB8531D9 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
12:10:45.0516 1612  btwaudio - ok
12:10:45.0566 1612  [ D87D990131AAABB27D4046790292366D ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
12:10:45.0566 1612  btwavdt - ok
12:10:45.0586 1612  [ D02F4D18AA4A38F781BEEFEB1892E144 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
12:10:45.0586 1612  btwl2cap - ok
12:10:45.0616 1612  [ E1771C0FB49E747AB2B2D29DA50510F9 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
12:10:45.0616 1612  btwrchid - ok
12:10:45.0676 1612  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:10:45.0676 1612  cdfs - ok
12:10:45.0736 1612  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:10:45.0736 1612  cdrom - ok
12:10:45.0796 1612  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:10:45.0806 1612  CertPropSvc - ok
12:10:45.0816 1612  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
12:10:45.0826 1612  circlass - ok
12:10:45.0906 1612  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
12:10:45.0906 1612  CLFS - ok
12:10:45.0976 1612  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:10:45.0976 1612  clr_optimization_v2.0.50727_32 - ok
12:10:46.0046 1612  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:10:46.0056 1612  clr_optimization_v4.0.30319_32 - ok
12:10:46.0076 1612  CLTNetCnService - ok
12:10:46.0136 1612  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:10:46.0136 1612  CmBatt - ok
12:10:46.0146 1612  [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:10:46.0146 1612  cmdide - ok
12:10:46.0166 1612  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:10:46.0166 1612  Compbatt - ok
12:10:46.0186 1612  COMSysApp - ok
12:10:46.0196 1612  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:10:46.0196 1612  crcdisk - ok
12:10:46.0216 1612  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
12:10:46.0226 1612  Crusoe - ok
12:10:46.0286 1612  [ 3EDE4C1F9672C972479201544969ADCB ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:10:46.0296 1612  CryptSvc - ok
12:10:46.0376 1612  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:10:46.0406 1612  DcomLaunch - ok
12:10:46.0516 1612  [ 2D7C1661961CE19085B6A968B1B293D4 ] DefaultTabSearch C:\Program Files\DefaultTab\DefaultTabSearch.exe
12:10:46.0536 1612  DefaultTabSearch - ok
12:10:46.0637 1612  [ 34AE0DFA3EE3B5B9975042D87332D0B7 ] DefaultTabUpdate C:\Users\Owner\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
12:10:46.0647 1612  DefaultTabUpdate - ok
12:10:46.0677 1612  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:10:46.0677 1612  DfsC - ok
12:10:46.0797 1612  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
12:10:46.0847 1612  DFSR - ok
12:10:46.0907 1612  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
12:10:46.0917 1612  Dhcp - ok
12:10:46.0967 1612  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
12:10:46.0967 1612  disk - ok
12:10:46.0997 1612  [ F206E28ED74C491FD5D7C0A1119CE37F ] DMICall         C:\Windows\system32\DRIVERS\DMICall.sys
12:10:46.0997 1612  DMICall - ok
12:10:47.0057 1612  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:10:47.0057 1612  Dnscache - ok
12:10:47.0087 1612  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:10:47.0097 1612  dot3svc - ok
12:10:47.0147 1612  [ 4F59C172C094E1A1D46463A8DC061CBD ] dot4            C:\Windows\system32\DRIVERS\Dot4.sys
12:10:47.0157 1612  dot4 - ok
12:10:47.0177 1612  [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
12:10:47.0187 1612  Dot4Print - ok
12:10:47.0207 1612  [ C55004CA6B419B6695970DFE849B122F ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
12:10:47.0217 1612  dot4usb - ok
12:10:47.0257 1612  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
12:10:47.0257 1612  DPS - ok
12:10:47.0287 1612  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:10:47.0297 1612  drmkaud - ok
12:10:47.0347 1612  [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:10:47.0367 1612  DXGKrnl - ok
12:10:47.0407 1612  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
12:10:47.0417 1612  E1G60 - ok
12:10:47.0467 1612  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
12:10:47.0477 1612  EapHost - ok
12:10:47.0537 1612  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
12:10:47.0537 1612  Ecache - ok
12:10:47.0597 1612  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:10:47.0607 1612  ehRecvr - ok
12:10:47.0627 1612  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
12:10:47.0627 1612  ehSched - ok
12:10:47.0637 1612  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
12:10:47.0647 1612  ehstart - ok
12:10:47.0697 1612  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:10:47.0717 1612  elxstor - ok
12:10:47.0777 1612  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
12:10:47.0797 1612  EMDMgmt - ok
12:10:47.0837 1612  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:10:47.0837 1612  ErrDev - ok
12:10:47.0887 1612  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
12:10:47.0897 1612  EventSystem - ok
12:10:47.0957 1612  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
12:10:47.0957 1612  exfat - ok
12:10:48.0027 1612  [ 1C3F11687E1D2FAF512D5D26237662EA ] faproct         C:\Windows\system32\DRIVERS\faproct.sys
12:10:48.0027 1612  faproct - ok
12:10:48.0067 1612  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:10:48.0067 1612  fastfat - ok
12:10:48.0097 1612  [ 518F099A6883F915D468669295B19702 ] faunidrv        C:\Windows\system32\DRIVERS\faunidrv.sys
12:10:48.0107 1612  faunidrv - ok
12:10:48.0147 1612  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:10:48.0147 1612  fdc - ok
12:10:48.0197 1612  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
12:10:48.0197 1612  fdPHost - ok
12:10:48.0227 1612  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:10:48.0237 1612  FDResPub - ok
12:10:48.0257 1612  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:10:48.0257 1612  FileInfo - ok
12:10:48.0277 1612  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:10:48.0277 1612  Filetrace - ok
12:10:48.0357 1612  [ F213323E98C0552D173401C5A9765E7D ] firedogAdvisorSrvHost C:\Program Files\firedog advisor\firedogAdvisorSrvHost.exe
12:10:48.0357 1612  firedogAdvisorSrvHost - ok
12:10:48.0387 1612  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:10:48.0387 1612  flpydisk - ok
12:10:48.0427 1612  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:10:48.0437 1612  FltMgr - ok
12:10:48.0487 1612  [ 85E5AD3A9D56FD6F92DB5FC9CA62E2E4 ] FlyUsb          C:\Windows\system32\DRIVERS\FlyUsb.sys
12:10:48.0487 1612  FlyUsb - ok
12:10:48.0587 1612  [ 8CE364388C8ECA59B14B539179276D44 ] FontCache       C:\Windows\system32\FntCache.dll
12:10:48.0617 1612  FontCache - ok
12:10:48.0697 1612  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:10:48.0707 1612  FontCache3.0.0.0 - ok
12:10:48.0737 1612  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:10:48.0747 1612  Fs_Rec - ok
12:10:48.0767 1612  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:10:48.0777 1612  gagp30kx - ok
12:10:48.0797 1612  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\Windows\system32\Drivers\GEARAspiWDM.sys
12:10:48.0807 1612  GEARAspiWDM - ok
12:10:48.0837 1612  [ 483924F92E55A5F9423201EC635E2CED ] gfibto          C:\Windows\system32\drivers\gfibto.sys
12:10:48.0837 1612  gfibto - ok
12:10:48.0897 1612  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:10:48.0907 1612  gpsvc - ok
12:10:48.0987 1612  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
12:10:48.0997 1612  gupdate - ok
12:10:49.0027 1612  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
12:10:49.0027 1612  gupdatem - ok
12:10:49.0077 1612  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
12:10:49.0087 1612  gusvc - ok
12:10:49.0147 1612  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:10:49.0157 1612  HdAudAddService - ok
12:10:49.0207 1612  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:10:49.0227 1612  HDAudBus - ok
12:10:49.0247 1612  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:10:49.0257 1612  HidBth - ok
12:10:49.0267 1612  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:10:49.0277 1612  HidIr - ok
12:10:49.0327 1612  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\system32\hidserv.dll
12:10:49.0327 1612  hidserv - ok
12:10:49.0367 1612  [ CCA4B519B17E23A00B826C55716809CC ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:10:49.0367 1612  HidUsb - ok
12:10:49.0417 1612  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:10:49.0427 1612  hkmsvc - ok
12:10:49.0457 1612  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
12:10:49.0467 1612  HpCISSs - ok
12:10:49.0537 1612  [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL        C:\Windows\system32\DRIVERS\VSTAZL3.SYS
12:10:49.0547 1612  HSFHWAZL - ok
12:10:49.0627 1612  [ 7BC42C65B5C6281777C1A7605B253BA8 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
12:10:49.0647 1612  HSF_DPV - ok
12:10:49.0697 1612  [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
12:10:49.0707 1612  HSXHWAZL - ok
12:10:49.0757 1612  [ F870AA3E254628EBEAFE754108D664DE ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:10:49.0767 1612  HTTP - ok
12:10:49.0787 1612  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
12:10:49.0797 1612  i2omp - ok
12:10:49.0847 1612  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:10:49.0847 1612  i8042prt - ok
12:10:49.0907 1612  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
12:10:49.0917 1612  iaStorV - ok
12:10:50.0007 1612  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
12:10:50.0017 1612  IDriverT - ok
12:10:50.0087 1612  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:10:50.0107 1612  idsvc - ok
12:10:50.0207 1612  [ 62448322731AC1BEDA52E2B3327046EE ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
12:10:50.0257 1612  igfx - ok
12:10:50.0287 1612  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:10:50.0287 1612  iirsp - ok
12:10:50.0337 1612  [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:10:50.0347 1612  IKEEXT - ok
12:10:50.0467 1612  [ 2BD6633DB50A98534AA3262E0F9F5A14 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
12:10:50.0507 1612  IntcAzAudAddService - ok
12:10:50.0567 1612  [ 83AA759F3189E6370C30DE5DC5590718 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:10:50.0567 1612  intelide - ok
12:10:50.0597 1612  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:10:50.0607 1612  intelppm - ok
12:10:50.0637 1612  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:10:50.0637 1612  IPBusEnum - ok
12:10:50.0667 1612  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:10:50.0667 1612  IpFilterDriver - ok
12:10:50.0717 1612  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:10:50.0727 1612  iphlpsvc - ok
12:10:50.0737 1612  IpInIp - ok
12:10:50.0757 1612  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
12:10:50.0767 1612  IPMIDRV - ok
12:10:50.0787 1612  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
12:10:50.0797 1612  IPNAT - ok
12:10:50.0837 1612  [ 8F610078437A459948480407F4DB91EA ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:10:50.0857 1612  iPod Service - ok
12:10:50.0877 1612  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:10:50.0877 1612  IRENUM - ok
12:10:50.0937 1612  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:10:50.0937 1612  isapnp - ok
12:10:50.0997 1612  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:10:51.0007 1612  iScsiPrt - ok
12:10:51.0027 1612  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
12:10:51.0027 1612  iteatapi - ok
12:10:51.0067 1612  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
12:10:51.0077 1612  iteraid - ok
12:10:51.0137 1612  [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr       C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
12:10:51.0147 1612  IviRegMgr - ok
12:10:51.0177 1612  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:10:51.0177 1612  kbdclass - ok
12:10:51.0207 1612  [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:10:51.0207 1612  kbdhid - ok
12:10:51.0247 1612  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
12:10:51.0257 1612  KeyIso - ok
12:10:51.0297 1612  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:10:51.0317 1612  KSecDD - ok
12:10:51.0367 1612  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:10:51.0387 1612  KtmRm - ok
12:10:51.0427 1612  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:10:51.0447 1612  LanmanServer - ok
12:10:51.0497 1612  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:10:51.0517 1612  LanmanWorkstation - ok
12:10:51.0777 1612  [ 24A7D535BD9E58E5BC1AC52EF7E2EC8E ] LeapFrog Connect Device Service C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
12:10:51.0937 1612  LeapFrog Connect Device Service - ok
12:10:52.0077 1612  [ A97EEB81F05BCE3D7AA6C81F04EF39A4 ] LiveUpdate      C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
12:10:52.0157 1612  LiveUpdate - ok
12:10:52.0167 1612  LiveUpdate Notice Ex - ok
12:10:52.0217 1612  [ 2D1389E05A807D956829F44BD4B60389 ] LiveUpdate Notice Service C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
12:10:52.0237 1612  LiveUpdate Notice Service - ok
12:10:52.0277 1612  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:10:52.0277 1612  lltdio - ok
12:10:52.0327 1612  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:10:52.0337 1612  lltdsvc - ok
12:10:52.0357 1612  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:10:52.0367 1612  lmhosts - ok
12:10:52.0407 1612  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:10:52.0417 1612  LSI_FC - ok
12:10:52.0437 1612  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:10:52.0437 1612  LSI_SAS - ok
12:10:52.0457 1612  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:10:52.0467 1612  LSI_SCSI - ok
12:10:52.0487 1612  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
12:10:52.0497 1612  luafv - ok
12:10:52.0607 1612  [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
12:10:52.0617 1612  McComponentHostService - ok
12:10:52.0657 1612  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:10:52.0667 1612  Mcx2Svc - ok
12:10:52.0687 1612  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
12:10:52.0687 1612  mdmxsdk - ok
12:10:52.0737 1612  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:10:52.0747 1612  megasas - ok
12:10:52.0797 1612  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
12:10:52.0807 1612  MegaSR - ok
12:10:52.0827 1612  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
12:10:52.0837 1612  MMCSS - ok
12:10:52.0857 1612  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
12:10:52.0857 1612  Modem - ok
12:10:52.0877 1612  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:10:52.0877 1612  monitor - ok
12:10:52.0897 1612  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:10:52.0897 1612  mouclass - ok
12:10:52.0917 1612  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:10:52.0927 1612  mouhid - ok
12:10:52.0957 1612  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
12:10:52.0967 1612  MountMgr - ok
12:10:53.0027 1612  [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:10:53.0027 1612  MozillaMaintenance - ok
12:10:53.0057 1612  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:10:53.0067 1612  mpio - ok
12:10:53.0087 1612  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:10:53.0087 1612  mpsdrv - ok
12:10:53.0137 1612  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:10:53.0157 1612  MpsSvc - ok
12:10:53.0167 1612  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
12:10:53.0177 1612  Mraid35x - ok
12:10:53.0217 1612  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:10:53.0227 1612  MRxDAV - ok
12:10:53.0247 1612  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:10:53.0247 1612  mrxsmb - ok
12:10:53.0277 1612  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:10:53.0287 1612  mrxsmb10 - ok
12:10:53.0307 1612  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:10:53.0307 1612  mrxsmb20 - ok
12:10:53.0337 1612  [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci          C:\Windows\system32\drivers\msahci.sys
12:10:53.0337 1612  msahci - ok
12:10:53.0417 1612  [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D ] MSCSPTISRV      C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
12:10:53.0417 1612  MSCSPTISRV - ok
12:10:53.0447 1612  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:10:53.0457 1612  msdsm - ok
12:10:53.0477 1612  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
12:10:53.0487 1612  MSDTC - ok
12:10:53.0517 1612  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:10:53.0527 1612  Msfs - ok
12:10:53.0557 1612  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:10:53.0557 1612  msisadrv - ok
12:10:53.0607 1612  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:10:53.0607 1612  MSiSCSI - ok
12:10:53.0617 1612  msiserver - ok
12:10:53.0677 1612  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:10:53.0677 1612  MSKSSRV - ok
12:10:53.0697 1612  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:10:53.0707 1612  MSPCLOCK - ok
12:10:53.0747 1612  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:10:53.0747 1612  MSPQM - ok
12:10:53.0787 1612  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:10:53.0797 1612  MsRPC - ok
12:10:53.0817 1612  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:10:53.0827 1612  mssmbios - ok
12:10:53.0837 1612  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:10:53.0847 1612  MSTEE - ok
12:10:53.0867 1612  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
12:10:53.0867 1612  Mup - ok
12:10:53.0917 1612  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
12:10:53.0927 1612  napagent - ok
12:10:53.0977 1612  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:10:53.0977 1612  NativeWifiP - ok
12:10:54.0037 1612  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:10:54.0057 1612  NDIS - ok
12:10:54.0087 1612  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:10:54.0087 1612  NdisTapi - ok
12:10:54.0107 1612  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:10:54.0107 1612  Ndisuio - ok
12:10:54.0147 1612  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:10:54.0157 1612  NdisWan - ok
12:10:54.0167 1612  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:10:54.0177 1612  NDProxy - ok
12:10:54.0197 1612  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:10:54.0197 1612  NetBIOS - ok
12:10:54.0247 1612  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
12:10:54.0257 1612  netbt - ok
12:10:54.0267 1612  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
12:10:54.0277 1612  Netlogon - ok
12:10:54.0327 1612  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
12:10:54.0337 1612  Netman - ok
12:10:54.0367 1612  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
12:10:54.0377 1612  netprofm - ok
12:10:54.0417 1612  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:10:54.0427 1612  NetTcpPortSharing - ok
12:10:54.0537 1612  [ 25ACCCFC33DD448B9D3037C5E439E830 ] NETw4v32        C:\Windows\system32\DRIVERS\NETw4v32.sys
12:10:54.0587 1612  NETw4v32 - ok
12:10:54.0627 1612  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:10:54.0627 1612  nfrd960 - ok
12:10:54.0667 1612  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:10:54.0677 1612  NlaSvc - ok
12:10:54.0707 1612  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:10:54.0717 1612  Npfs - ok
12:10:54.0737 1612  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
12:10:54.0747 1612  nsi - ok
12:10:54.0767 1612  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:10:54.0767 1612  nsiproxy - ok
12:10:54.0837 1612  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:10:54.0867 1612  Ntfs - ok
12:10:54.0907 1612  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
12:10:54.0907 1612  ntrigdigi - ok
12:10:54.0933 1612  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
12:10:54.0933 1612  Null - ok
12:10:54.0964 1612  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:10:54.0964 1612  nvraid - ok
12:10:54.0995 1612  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:10:54.0995 1612  nvstor - ok
12:10:55.0026 1612  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:10:55.0026 1612  nv_agp - ok
12:10:55.0042 1612  NwlnkFlt - ok
12:10:55.0042 1612  NwlnkFwd - ok
12:10:55.0182 1612  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:10:55.0198 1612  odserv - ok
12:10:55.0229 1612  [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
12:10:55.0245 1612  ohci1394 - ok
12:10:55.0307 1612  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:10:55.0323 1612  ose - ok
12:10:55.0385 1612  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
12:10:55.0416 1612  p2pimsvc - ok
12:10:55.0448 1612  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:10:55.0463 1612  p2psvc - ok
12:10:55.0494 1612  [ 753A8F339F231D2B857E2CCD51A6E6CA ] PACSPTISVR      C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
12:10:55.0510 1612  PACSPTISVR - ok
12:10:55.0557 1612  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
12:10:55.0557 1612  Parport - ok
12:10:55.0604 1612  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:10:55.0604 1612  partmgr - ok
12:10:55.0635 1612  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
12:10:55.0635 1612  Parvdm - ok
12:10:55.0666 1612  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:10:55.0682 1612  PcaSvc - ok
12:10:55.0713 1612  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
12:10:55.0713 1612  pci - ok
12:10:55.0744 1612  [ 1636D43F10416AEB483BC6001097B26C ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
12:10:55.0744 1612  pciide - ok
12:10:55.0806 1612  [ 3BB2244F343B610C29C98035504C9B75 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
12:10:55.0806 1612  pcmcia - ok
12:10:55.0884 1612  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:10:55.0916 1612  PEAUTH - ok
12:10:56.0025 1612  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
12:10:56.0072 1612  pla - ok
12:10:56.0165 1612  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:10:56.0181 1612  PlugPlay - ok
12:10:56.0212 1612  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
12:10:56.0228 1612  PNRPAutoReg - ok
12:10:56.0259 1612  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
12:10:56.0274 1612  PNRPsvc - ok
12:10:56.0321 1612  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:10:56.0321 1612  PolicyAgent - ok
12:10:56.0368 1612  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:10:56.0378 1612  PptpMiniport - ok
12:10:56.0398 1612  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
12:10:56.0408 1612  Processor - ok
12:10:56.0448 1612  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:10:56.0458 1612  ProfSvc - ok
12:10:56.0478 1612  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
12:10:56.0488 1612  ProtectedStorage - ok
12:10:56.0518 1612  [ F115AF58ABE5605D7D709CBFBD83F418 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
12:10:56.0538 1612  ProtexisLicensing - ok
12:10:56.0568 1612  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
12:10:56.0578 1612  PSched - ok
12:10:56.0628 1612  [ 785E1032C8F3C8C60AA8E2B7FE377869 ] PTDMBus         C:\Windows\system32\DRIVERS\PTDMBus.sys
12:10:56.0628 1612  PTDMBus - ok
12:10:56.0648 1612  [ 924C2B2DCA76D2BD7D44B3BB968B344F ] PTDMMdm         C:\Windows\system32\DRIVERS\PTDMMdm.sys
12:10:56.0658 1612  PTDMMdm - ok
12:10:56.0688 1612  [ 58AD3CCDD567FA45FD94AF15229ACE7C ] PTDMVsp         C:\Windows\system32\DRIVERS\PTDMVsp.sys
12:10:56.0698 1612  PTDMVsp - ok
12:10:56.0718 1612  [ 49F773DECBCD6A555C7A8694D37D232E ] PTDMWWAN        C:\Windows\system32\DRIVERS\PTDMWWAN.sys
12:10:56.0718 1612  PTDMWWAN - ok
12:10:56.0758 1612  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
12:10:56.0758 1612  PxHelp20 - ok
12:10:56.0838 1612  [ FAD2DD41B0C6DA123106AFC8098705AC ] QBCFMonitorService C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
12:10:56.0848 1612  QBCFMonitorService - ok
12:10:56.0878 1612  [ BAB30D2799754F6EA22F0B9076311793 ] QBFCService     C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
12:10:56.0878 1612  QBFCService - ok
12:10:56.0958 1612  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:10:56.0988 1612  ql2300 - ok
12:10:57.0018 1612  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:10:57.0028 1612  ql40xx - ok
12:10:57.0348 1612  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
12:10:57.0358 1612  QWAVE - ok
12:10:57.0378 1612  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:10:57.0378 1612  QWAVEdrv - ok
12:10:57.0438 1612  [ 68E04F3944E6F82C64B53F8A8F13FB3A ] R5U870FLx86     C:\Windows\system32\Drivers\R5U870FLx86.sys
12:10:57.0438 1612  R5U870FLx86 - ok
12:10:57.0458 1612  [ 7F1356060D1894B46554A0D8E6F13958 ] R5U870FUx86     C:\Windows\system32\Drivers\R5U870FUx86.sys
12:10:57.0458 1612  R5U870FUx86 - ok
12:10:57.0488 1612  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:10:57.0488 1612  RasAcd - ok
12:10:57.0518 1612  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
12:10:57.0528 1612  RasAuto - ok
12:10:57.0558 1612  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:10:57.0568 1612  Rasl2tp - ok
12:10:57.0608 1612  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
12:10:57.0628 1612  RasMan - ok
12:10:57.0668 1612  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:10:57.0668 1612  RasPppoe - ok
12:10:57.0698 1612  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:10:57.0708 1612  RasSstp - ok
12:10:57.0738 1612  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:10:57.0748 1612  rdbss - ok
12:10:57.0768 1612  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:10:57.0768 1612  RDPCDD - ok
12:10:57.0808 1612  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
12:10:57.0818 1612  rdpdr - ok
12:10:57.0828 1612  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:10:57.0838 1612  RDPENCDD - ok
12:10:57.0878 1612  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:10:57.0888 1612  RDPWD - ok
12:10:57.0978 1612  [ B2D01290C0E0465ACA54C2088E947823 ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
12:10:57.0988 1612  RealNetworks Downloader Resolver Service - ok
12:10:58.0038 1612  [ 001B4278407F4303EFC902A2B16F2453 ] regi            C:\Windows\system32\drivers\regi.sys
12:10:58.0048 1612  regi - ok
12:10:58.0088 1612  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:10:58.0098 1612  RemoteAccess - ok
12:10:58.0128 1612  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:10:58.0148 1612  RemoteRegistry - ok
12:10:58.0188 1612  [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
12:10:58.0198 1612  RFCOMM - ok
12:10:58.0228 1612  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
12:10:58.0238 1612  RpcLocator - ok
12:10:58.0278 1612  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll
12:10:58.0298 1612  RpcSs - ok
12:10:58.0338 1612  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:10:58.0338 1612  rspndr - ok
12:10:58.0378 1612  [ B7E1C523E2F7787D700766FC78E01F77 ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
12:10:58.0378 1612  RTL8169 - ok
12:10:58.0388 1612  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
12:10:58.0398 1612  SamSs - ok
12:10:58.0428 1612  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:10:58.0428 1612  sbp2port - ok
12:10:58.0548 1612  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
12:10:58.0568 1612  SBSDWSCService - ok
12:10:58.0628 1612  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:10:58.0638 1612  SCardSvr - ok
12:10:58.0718 1612  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
12:10:58.0748 1612  Schedule - ok
12:10:58.0778 1612  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:10:58.0778 1612  SCPolicySvc - ok
12:10:58.0818 1612  [ 60AB2853A89E7DB562B2A56E8DE2D0E7 ] SCR3XX2K        C:\Windows\system32\DRIVERS\SCR3XX2K.sys
12:10:58.0818 1612  SCR3XX2K - ok
12:10:58.0858 1612  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:10:58.0868 1612  SDRSVC - ok
12:10:58.0918 1612  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:10:58.0918 1612  secdrv - ok
12:10:58.0948 1612  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
12:10:58.0958 1612  seclogon - ok
12:10:58.0978 1612  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
12:10:58.0988 1612  SENS - ok
12:10:59.0008 1612  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:10:59.0018 1612  Serenum - ok
12:10:59.0038 1612  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
12:10:59.0038 1612  Serial - ok
12:10:59.0068 1612  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:10:59.0068 1612  sermouse - ok
12:10:59.0108 1612  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:10:59.0118 1612  SessionEnv - ok
12:10:59.0158 1612  [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP            C:\Windows\system32\DRIVERS\SFEP.sys
12:10:59.0158 1612  SFEP - ok
12:10:59.0188 1612  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:10:59.0198 1612  sffdisk - ok
12:10:59.0218 1612  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:10:59.0218 1612  sffp_mmc - ok
12:10:59.0228 1612  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:10:59.0228 1612  sffp_sd - ok
12:10:59.0268 1612  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:10:59.0278 1612  sfloppy - ok
12:10:59.0308 1612  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:10:59.0328 1612  SharedAccess - ok
12:10:59.0368 1612  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:10:59.0388 1612  ShellHWDetection - ok
12:10:59.0408 1612  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:10:59.0418 1612  sisagp - ok
12:10:59.0438 1612  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
12:10:59.0448 1612  SiSRaid2 - ok
12:10:59.0478 1612  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:10:59.0478 1612  SiSRaid4 - ok
12:10:59.0518 1612  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
12:10:59.0518 1612  SkypeUpdate - ok
12:10:59.0668 1612  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
12:10:59.0758 1612  slsvc - ok
12:10:59.0798 1612  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
12:10:59.0818 1612  SLUINotify - ok
12:10:59.0858 1612  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:10:59.0868 1612  Smb - ok
12:10:59.0908 1612  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:10:59.0918 1612  SNMPTRAP - ok
12:10:59.0958 1612  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
12:10:59.0958 1612  spldr - ok
12:10:59.0998 1612  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
12:11:00.0008 1612  Spooler - ok
12:11:00.0048 1612  [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1 ] SPTISRV         C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
12:11:00.0058 1612  SPTISRV - ok
12:11:00.0118 1612  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:11:00.0128 1612  srv - ok
12:11:00.0168 1612  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:11:00.0178 1612  srv2 - ok
12:11:00.0198 1612  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:11:00.0198 1612  srvnet - ok
12:11:00.0238 1612  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:11:00.0258 1612  SSDPSRV - ok
12:11:00.0298 1612  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:11:00.0328 1612  SstpSvc - ok
12:11:00.0378 1612  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
12:11:00.0408 1612  stisvc - ok
12:11:00.0448 1612  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:11:00.0458 1612  swenum - ok
12:11:00.0518 1612  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
12:11:00.0538 1612  swprv - ok
12:11:00.0568 1612  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
12:11:00.0568 1612  Symc8xx - ok
12:11:00.0588 1612  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
12:11:00.0598 1612  Sym_hi - ok
12:11:00.0618 1612  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
12:11:00.0618 1612  Sym_u3 - ok
12:11:00.0668 1612  [ 99DA94793332AADBB17BBB521AE56E21 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
12:11:00.0668 1612  SynTP - ok
12:11:00.0718 1612  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
12:11:00.0738 1612  SysMain - ok
12:11:00.0768 1612  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:11:00.0788 1612  TabletInputService - ok
12:11:00.0828 1612  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:11:00.0848 1612  TapiSrv - ok
12:11:00.0868 1612  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
12:11:00.0888 1612  TBS - ok
12:11:00.0938 1612  [ 548E198BAE21EFC21F8B5F0C1728AD27 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:11:00.0968 1612  Tcpip - ok
12:11:00.0998 1612  [ 548E198BAE21EFC21F8B5F0C1728AD27 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
12:11:01.0018 1612  Tcpip6 - ok
12:11:01.0048 1612  [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:11:01.0058 1612  tcpipreg - ok
12:11:01.0088 1612  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:11:01.0098 1612  TDPIPE - ok
12:11:01.0118 1612  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:11:01.0128 1612  TDTCP - ok
12:11:01.0158 1612  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:11:01.0168 1612  tdx - ok
12:11:01.0188 1612  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:11:01.0188 1612  TermDD - ok
12:11:01.0228 1612  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
12:11:01.0258 1612  TermService - ok
12:11:01.0278 1612  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
12:11:01.0298 1612  Themes - ok
12:11:01.0318 1612  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
12:11:01.0328 1612  THREADORDER - ok
12:11:01.0408 1612  [ 030F439AC1CCDA7AC6CE01CC02102045 ] ti21sony        C:\Windows\system32\drivers\ti21sony.sys
12:11:01.0428 1612  ti21sony - ok
12:11:01.0478 1612  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
12:11:01.0488 1612  TrkWks - ok
12:11:01.0538 1612  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:11:01.0548 1612  TrustedInstaller - ok
12:11:01.0578 1612  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:11:01.0578 1612  tssecsrv - ok
12:11:01.0608 1612  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
12:11:01.0618 1612  tunmp - ok
12:11:01.0668 1612  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:11:01.0668 1612  tunnel - ok
12:11:01.0698 1612  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:11:01.0698 1612  uagp35 - ok
12:11:01.0758 1612  [ 5704B9BF52BD0B611FE871F47A3230B9 ] uCamMonitor     C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe
12:11:01.0758 1612  uCamMonitor - ok
12:11:01.0798 1612  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:11:01.0798 1612  udfs - ok
12:11:01.0848 1612  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:11:01.0858 1612  UI0Detect - ok
12:11:01.0898 1612  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:11:01.0898 1612  uliagpkx - ok
12:11:01.0928 1612  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
12:11:01.0938 1612  uliahci - ok
12:11:01.0958 1612  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
12:11:01.0968 1612  UlSata - ok
12:11:01.0988 1612  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
12:11:01.0998 1612  ulsata2 - ok
12:11:02.0028 1612  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:11:02.0028 1612  umbus - ok
12:11:02.0048 1612  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
12:11:02.0068 1612  upnphost - ok
12:11:02.0118 1612  [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
12:11:02.0118 1612  USBAAPL - ok
12:11:02.0168 1612  [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:11:02.0168 1612  usbaudio - ok
12:11:02.0208 1612  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:11:02.0218 1612  usbccgp - ok
12:11:02.0248 1612  [ E0B8489AEDA9EA33361037BE6A8CF1CA ] USBCCID         C:\Windows\system32\DRIVERS\usbccid.sys
12:11:02.0258 1612  USBCCID - ok
12:11:02.0288 1612  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:11:02.0298 1612  usbcir - ok
12:11:02.0348 1612  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:11:02.0348 1612  usbehci - ok
12:11:02.0388 1612  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:11:02.0398 1612  usbhub - ok
12:11:02.0428 1612  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:11:02.0428 1612  usbohci - ok
12:11:02.0468 1612  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:11:02.0478 1612  usbprint - ok
12:11:02.0518 1612  [ A508C9BD8724980512136B039BBA65E9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:11:02.0528 1612  usbscan - ok
12:11:02.0558 1612  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:11:02.0568 1612  USBSTOR - ok
12:11:02.0598 1612  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:11:02.0608 1612  usbuhci - ok
12:11:02.0628 1612  [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:11:02.0638 1612  usbvideo - ok
12:11:02.0668 1612  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
12:11:02.0678 1612  UxSms - ok
12:11:02.0758 1612  [ AFBCD738DF9DE3B6D71AFC704E7F27FB ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
12:11:02.0768 1612  VAIO Entertainment TV Device Arbitration Service - ok
12:11:02.0828 1612  [ 8A9F18ADAD471402236CA931553BF79B ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
12:11:02.0838 1612  VAIO Event Service - ok
12:11:02.0988 1612  [ 4B8F85BFC82B849D52FD4F3F32259DBC ] VAIOMediaPlatform-IntegratedServer-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
12:11:03.0058 1612  VAIOMediaPlatform-IntegratedServer-AppServer - ok
12:11:03.0128 1612  [ 56E33AAA46CBA8431E72486196AFB3A1 ] VAIOMediaPlatform-IntegratedServer-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
12:11:03.0148 1612  VAIOMediaPlatform-IntegratedServer-HTTP - ok
12:11:03.0238 1612  [ 58558F3DC2FEF127B697D1138A8D7AFB ] VAIOMediaPlatform-IntegratedServer-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
12:11:03.0258 1612  VAIOMediaPlatform-IntegratedServer-UPnP - ok
12:11:03.0338 1612  [ 52D4F568FE7D05AE5026B8717EEB59EB ] VAIOMediaPlatform-UCLS-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
12:11:03.0358 1612  VAIOMediaPlatform-UCLS-AppServer - ok
12:11:03.0398 1612  [ 56E33AAA46CBA8431E72486196AFB3A1 ] VAIOMediaPlatform-UCLS-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
12:11:03.0408 1612  VAIOMediaPlatform-UCLS-HTTP - ok
12:11:03.0438 1612  [ 58558F3DC2FEF127B697D1138A8D7AFB ] VAIOMediaPlatform-UCLS-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
12:11:03.0458 1612  VAIOMediaPlatform-UCLS-UPnP - ok
12:11:03.0538 1612  [ 6EF45DF2FCC4AE35C715A6C9B5C68B17 ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
12:11:03.0548 1612  VcmIAlzMgr - ok
12:11:03.0618 1612  [ C4DE5BA157FD83BBDAEB70EE27417E0E ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
12:11:03.0628 1612  VcmXmlIfHelper - ok
12:11:03.0638 1612  Vcsw - ok
12:11:03.0688 1612  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
12:11:03.0708 1612  vds - ok
12:11:03.0728 1612  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:11:03.0738 1612  vga - ok
12:11:03.0768 1612  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:11:03.0768 1612  VgaSave - ok
12:11:03.0798 1612  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:11:03.0798 1612  viaagp - ok
12:11:03.0838 1612  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
12:11:03.0838 1612  ViaC7 - ok
12:11:03.0868 1612  [ AADF5587A4063F52C2C3FED7887426FC ] viaide          C:\Windows\system32\drivers\viaide.sys
12:11:03.0868 1612  viaide - ok
12:11:03.0898 1612  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:11:03.0908 1612  volmgr - ok
12:11:03.0948 1612  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:11:03.0958 1612  volmgrx - ok
12:11:03.0998 1612  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:11:04.0008 1612  volsnap - ok
12:11:04.0048 1612  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:11:04.0058 1612  vsmraid - ok
12:11:04.0128 1612  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
12:11:04.0158 1612  VSS - ok
12:11:04.0208 1612  [ 2E785F4F92C4C67CEBB61DD55ED1F6A1 ] VzCdbSvc        C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
12:11:04.0218 1612  VzCdbSvc - ok
12:11:04.0228 1612  [ 2D876CAD8C7FFB08179DFF361FF851E6 ] VzFw            C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
12:11:04.0238 1612  VzFw - ok
12:11:04.0268 1612  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
12:11:04.0278 1612  W32Time - ok
12:11:04.0328 1612  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:11:04.0328 1612  WacomPen - ok
12:11:04.0368 1612  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:11:04.0368 1612  Wanarp - ok
12:11:04.0378 1612  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:11:04.0388 1612  Wanarpv6 - ok
12:11:04.0428 1612  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw          C:\Windows\system32\DRIVERS\wanatw4.sys
12:11:04.0438 1612  wanatw - ok
12:11:04.0478 1612  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:11:04.0508 1612  wcncsvc - ok
12:11:04.0538 1612  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:11:04.0548 1612  WcsPlugInService - ok
12:11:04.0568 1612  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
12:11:04.0568 1612  Wd - ok
12:11:04.0608 1612  [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam.sys
12:11:04.0618 1612  WDC_SAM - ok
12:11:04.0668 1612  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:11:04.0678 1612  Wdf01000 - ok
12:11:04.0708 1612  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:11:04.0728 1612  WdiServiceHost - ok
12:11:04.0738 1612  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:11:04.0748 1612  WdiSystemHost - ok
12:11:04.0798 1612  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
12:11:04.0808 1612  WebClient - ok
12:11:04.0848 1612  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:11:04.0858 1612  Wecsvc - ok
12:11:04.0898 1612  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:11:04.0918 1612  wercplsupport - ok
12:11:04.0948 1612  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:11:04.0968 1612  WerSvc - ok
12:11:05.0018 1612  [ F9AD3A5E3FD7E0BDB18B8202B0FDD4E4 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
12:11:05.0018 1612  WimFltr - ok
12:11:05.0078 1612  [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
12:11:05.0088 1612  winachsf - ok
12:11:05.0148 1612  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:11:05.0158 1612  WinDefend - ok
12:11:05.0178 1612  WinHttpAutoProxySvc - ok
12:11:05.0248 1612  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:11:05.0258 1612  Winmgmt - ok
12:11:05.0338 1612  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:11:05.0378 1612  WinRM - ok
12:11:05.0438 1612  [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
12:11:05.0438 1612  WinUSB - ok
12:11:05.0488 1612  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:11:05.0518 1612  Wlansvc - ok
12:11:05.0548 1612  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:11:05.0558 1612  WmiAcpi - ok
12:11:05.0588 1612  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:11:05.0598 1612  wmiApSrv - ok
12:11:05.0678 1612  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:11:05.0708 1612  WMPNetworkSvc - ok
12:11:05.0728 1612  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:11:05.0738 1612  WPCSvc - ok
12:11:05.0798 1612  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:11:05.0808 1612  WPDBusEnum - ok
12:11:05.0848 1612  [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
12:11:05.0848 1612  WpdUsb - ok
12:11:05.0948 1612  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:11:05.0978 1612  WPFFontCache_v0400 - ok
12:11:06.0008 1612  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:11:06.0008 1612  ws2ifsl - ok
12:11:06.0048 1612  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\System32\wscsvc.dll
12:11:06.0058 1612  wscsvc - ok
12:11:06.0078 1612  WSearch - ok
12:11:06.0188 1612  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
12:11:06.0248 1612  wuauserv - ok
12:11:06.0318 1612  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:11:06.0328 1612  WudfPf - ok
12:11:06.0348 1612  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:11:06.0358 1612  WUDFRd - ok
12:11:06.0388 1612  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:11:06.0408 1612  wudfsvc - ok
12:11:06.0448 1612  [ 88AF537264F2B818DA15479CEEAF5D7C ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
12:11:06.0448 1612  XAudio - ok
12:11:06.0488 1612  [ 15A317674A08DF26BE65164D959E9203 ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
12:11:06.0498 1612  XAudioService - ok
12:11:06.0828 1612  [ 391C564BD1FF75EDC6367D81D8F55EC8 ] ZuneNetworkSvc  C:\Program Files\Zune\ZuneNss.exe
12:11:07.0038 1612  ZuneNetworkSvc - ok
12:11:07.0098 1612  [ C9F9D75B4673C372FC119DF535BE3C1E ] ZuneWlanCfgSvc  C:\Windows\system32\ZuneWlanCfgSvc.exe
12:11:07.0118 1612  ZuneWlanCfgSvc - ok
12:11:07.0138 1612  ================ Scan global ===============================
12:11:07.0168 1612  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
12:11:07.0218 1612  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
12:11:07.0248 1612  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
12:11:07.0298 1612  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
12:11:07.0318 1612  [Global] - ok
12:11:07.0318 1612  ================ Scan MBR ==================================
12:11:07.0348 1612  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:11:08.0718 1612  \Device\Harddisk0\DR0 - ok
12:11:08.0718 1612  ================ Scan VBR ==================================
12:11:08.0758 1612  [ 14E95D8850E5A9803F5AFE06313034DD ] \Device\Harddisk0\DR0\Partition1
12:11:08.0758 1612  \Device\Harddisk0\DR0\Partition1 - ok
12:11:08.0758 1612  ============================================================
12:11:08.0758 1612  Scan finished
12:11:08.0758 1612  ============================================================
12:11:08.0778 4240  Detected object count: 0
12:11:08.0778 4240  Actual detected object count: 0
12:12:51.0990 11028  Deinitialize success
 

# AdwCleaner v2.303 - Logfile created 06/19/2013 at 12:14:44
# Updated 08/06/2013 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Owner - MITCHELLS
# Boot Mode : Normal
# Running from : C:\Users\Owner\Desktop\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

Stopped & Deleted : DefaultTabSearch
Stopped & Deleted : DefaultTabUpdate

***** [Files / Folders] *****

File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\adawaretb.xml
File Deleted : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\wwnui29z.default\searchplugins\search.xml
File Deleted : C:\Windows\system32\conduitEngine.tmp
Folder Deleted : C:\Program Files\adawaretb
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\ConduitEngine
Folder Deleted : C:\Program Files\DefaultTab
Folder Deleted : C:\Program Files\Vuze_Remote
Folder Deleted : C:\ProgramData\adawaretb
Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\ProgramData\search protection
Folder Deleted : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Folder Deleted : C:\Users\Owner\AppData\LocalLow\adawaretb
Folder Deleted : C:\Users\Owner\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Owner\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Owner\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\Owner\AppData\LocalLow\Vuze_Remote
Folder Deleted : C:\Users\Owner\AppData\Roaming\DefaultTab
Folder Deleted : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\wwnui29z.default\adawaretb
Folder Deleted : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\wwnui29z.default\CT2504091
Folder Deleted : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\wwnui29z.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
Folder Deleted : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\wwnui29z.default\extensions\addon@defaulttab.com
Folder Deleted : C:\Users\Owner\AppData\Roaming\registry mechanic

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\adawaretb
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\DefaultTab
Key Deleted : HKCU\Software\AppDataLow\Software\Vuze_Remote
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\DefaultTab
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\adawaretb
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DefaultTab
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Vuze_Remote Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\Software\adawaretb
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415C-8A37-763AE183E7E4}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BDBDE358-9B8B-429D-8F8D-3A684831D552}
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX.1
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\DefaultTab
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{91C66CC0-716C-4A7F-AF57-BF931359C8E2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD5C630D-ABC5-4E80-A8EC-192DA20E1619}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FEDEE6B5-877C-42C3-9DD6-D1234D20FF5A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BDBDE358-9B8B-429D-8F8D-3A684831D552}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\adawaretb
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Conduit Engine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar
Key Deleted : HKLM\Software\Vuze_Remote
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{6C97A91E-4524-4019-86AF-2AA2D567BF5C}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16490

[OK] Registry is clean.

-\\ Mozilla Firefox v20.0.1 (en-US)

File : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\wwnui29z.default\prefs.js

C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\wwnui29z.default\user.js ... Deleted !

Deleted : user_pref("extensions.dynconff.cache.botcrawl.com.content", "<package expire=\"3600\" es=\"914\" pcd[...]
Deleted : user_pref("extensions.dynconff.cache.search.yahoo.com.content", "<package expire=\"3600\" es=\"914\"[...]
Deleted : user_pref("extensions.dynconff.cache.windows.microsoft.com.content", "<package expire=\"3600\" es=\"[...]
Deleted : user_pref("extensions.dynconff.cache.www.google.com.content", "<package expire=\"3600\" es=\"914\" p[...]
Deleted : user_pref("extensions.dynconff.cache.www.spyware-techie.com.content", "<package expire=\"3600\" es=\[...]
Deleted : user_pref("extensions.dynconff.cache.www.yahoo.com.content", "<package expire=\"3600\" es=\"914\" pc[...]

-\\ Google Chrome v27.0.1453.116

File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [9047 octets] - [19/06/2013 12:14:44]

########## EOF - C:\AdwCleaner[S1].txt - [9107 octets] ##########

 

ESET

C:\Users\All Users\Spybot - Search & Destroy\Recovery\Wajam28.zip Win32/Bagle.gen.zip worm 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\Wajam30.zip Win32/Bagle.gen.zip worm 
C:\ProgramData\Spybot - Search & Destroy\Recovery\Wajam28.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\Wajam30.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Users\Owner\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\stub_data\stubinst_pkg_en-us.cab Win32/OpenCandy application deleted - quarantined
 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:25 PM

Posted 19 June 2013 - 05:55 PM

Hi looks like your infection is deeper. Probably some leftovers from he Bagle infection. We need a deeper look.
Please follow this Preparation Guide and post in a new topic. name it "Had Bagle and still redirect"

Include this link back to here.
http://www.bleepingcomputer.com/forums/t/498540/advertising-malware-and-google-redirect/#entry3083008

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users