Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I think I am infested


  • Please log in to reply
13 replies to this topic

#1 dagr

dagr

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 29 June 2013 - 05:13 PM

Hello all, I think that when I downloaded some free software, I got more than I bargained for. After the download, I noticed that my startpage had been changed and that I could not set it to what I wanted. I did a scan with malwarebytes and it found 3 items. That took care of the startpage problem but I am now getting all kind of pop ups saying that my computer is infected, click here to fix (they look like rogues to me). I am also getting redirected to strange websites when I use the back button on my browser. I did another scan with malwarebytes and avast and both of those scans found nothing. I have windows 7 and Firefox. Thank you :)



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 29 June 2013 - 05:43 PM

Run the Junkware removal tool.Post the log.
http://thisisudax.org/downloads/JRT.exe

Reboot your machine.


Download Adware Cleaner double click it to run it.
Click the delete button allow it to run
The program will reboot your machine.
This is normal.
Post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner



 

 

 

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

 

 

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results



Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/

Post the log here,

 

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.



#3 dagr

dagr
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 29 June 2013 - 05:50 PM

Thank you for your reply, I'll get right on it, Thanks so much



#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 29 June 2013 - 05:52 PM

:thumbup2:



#5 dagr

dagr
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 30 June 2013 - 08:50 AM

OK, here is four out of six. The last one, ESET, is giving me problems. The first time i ran ESET I had to pause the scan 5 minutes in to disable Avast for an hour and I haven't been able get it to scan past the point where I paused it. I'll keep trying, here is what I have so far. I ran the tdsskiller also and it found nothing, but for the life of me, I can't figure out how to copy and paste that report to this post, any ideas?

 

 

Your message is ready to be sent with the following file or link attachments:
JRT

Note: To protect against computer viruses, e-mail programs may prevent sending or receiving certain types of file attachments. Check your e-mail security settings to determine how attachments are handled.
 

JRT.txt
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Dagr on Sat 06/29/2013 at 18:54:48.79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] updater by sweetpacks
Successfully deleted: [Service] updater by sweetpacks



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\browser infrastructure helper
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{ae07101b-46d4-4a98-af68-0333ea26e113}
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-4117553487-1767824652-712851630-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smartbarbackup
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\extension.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\iehelperv2.5.0.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\extension.extensionhelperobject
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\extension.extensionhelperobject.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iehelperv250.wecarereminder
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iehelperv250.wecarereminder.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetie.ietoolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetie.ietoolbar.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar3.sweetie
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\toolbar3.sweetie.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\quickshare_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\quickshare_rasmancs
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}



~~~ Files

Successfully deleted: [File] "C:\Windows\couponprinter.ocx"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\wecarereminder"
Failed to delete: [Folder] "C:\Users\Dagr\appdata\local\smartbar"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"
Successfully deleted: [Folder] "C:\Program Files (x86)\sweetim"
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{02EF3293-E925-4756-B6CC-AD11CD97B436}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{0573576D-27E0-4070-9F35-6A31328392FE}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{08898828-E11B-4862-B2A5-6E2EAFEACCE1}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{0A5962DA-E099-4DE6-8122-1A5447A3B557}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{0B6A12C4-3FD1-4BE0-BB01-B4D51061B743}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{0CA4F805-A8B5-4B47-B133-B6635C027392}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{1045DEB1-054C-4197-B89A-050EB71BE1F3}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{107A900E-468A-4CC8-8D12-0430446492D6}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{127C8075-8467-4E2E-A8B9-77AF0D9AB6D8}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{200DDCAC-0E9B-43BA-8E0E-7ADD70651C97}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{221EB719-73DD-4396-B6ED-72E0DABA2654}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{23F10B65-8007-4C13-A66E-8FA6ABF4E7BD}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{275E1BC8-947B-4039-8644-69234539FA13}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{2A52F1C6-86EB-43D1-A1D9-75853BF5DE02}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{2ABA93A9-E78E-49F8-80B2-5CD1D7B6537F}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{2B7C310E-70AB-4416-8C8A-2FC062C71D6F}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{3871634A-3705-4ED5-B996-6D34B0752295}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{39C18D12-9AA8-4D68-BD2C-4FD20EFC6FD1}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{3BF2DB38-26B0-4C68-847E-11325868D10D}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{41CD34B2-5FCA-4F2A-BD94-F0D68B57FBB8}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{4BD5E5AD-D468-421C-B2F9-5A698F22EE19}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{4D6F9096-16EF-41EF-B68A-DC093EAA44B8}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{52B47A76-47C8-41E7-9554-774697256994}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{5B907638-2B13-494A-A347-C5228E9F49B4}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{615984B0-D1B8-4B34-A6CD-AB5BFDBD3EE3}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{658CB056-F206-44B2-A903-DEE0227E9A98}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{7212B2B8-1340-4A1B-8ABA-2BE058D2E493}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{7B16C19D-327D-478E-9B1E-438E84DB8738}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{7B9DCF23-E9A9-43A4-BD4C-044B0764CCC3}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{800BCF06-6FEB-4A96-A8C9-CC2A58C1AD13}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{82AD2C36-C147-4D6B-884C-F4594709DC5F}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{8450F565-34AD-43DA-829B-411311A83615}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{8495AF32-4F81-4503-9D8B-CFBAF0F478F5}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{85E44BCF-7F80-4162-8108-839B96140D37}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{85E45CD2-B652-4F94-8E72-4FBEE139DA43}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{87CF558F-8312-4E30-B4D5-D249F3BBB238}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{8F53DF39-26B7-4735-85E1-558B1525E38E}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{91FEF02E-60A5-420E-8B21-13A92B5BDB58}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{96FEBE8B-E9AD-4316-ADA1-3F118718C564}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{9D05ED84-3BBF-4129-B459-B9E6306E0699}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{9E1A3B47-F70B-4EA3-B27E-5F3F3802D4D5}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{9E2FC32D-A68D-40EA-B34A-6D8AFCED8CCA}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{A171F549-FB53-4EFC-89C0-DAA66BD126A5}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{A25E2596-100F-4587-B28A-8AFEF5E898D7}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{AE1BC0D8-9DBD-4617-85FF-F02990A8A91D}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{B44DA026-97DD-4D46-8485-9749CC7AE0FC}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{C10B5CC3-0C7B-454C-BB2A-9516EF7F2AC7}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{C29A4FA7-7F01-4ABA-810A-15938EEE7861}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{C4FCBD95-9D38-405B-AF40-66257E3F41C2}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{C63B61CD-D415-4936-A0D7-D82507DC7F2F}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{C7FC5BB0-0BE2-4D24-8E09-F88114F3D57E}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{CABB52A4-9020-421C-BE82-08DBFB12EE62}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{D0A8A339-6265-4F06-9379-25BE7087662C}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{D3C7984B-CDE8-427D-A227-3305EE991CD5}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{D4A480BC-E96E-44DD-9F7D-100A0F2DE8B2}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{D705593D-8D10-4D33-8F99-D2FD44B06E14}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{E1CD5150-B7CE-4C41-9B08-D89D94362935}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{E7503A7F-66EA-4B45-86E0-ED0D37BCCE52}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{ED73EF3E-4FDD-4A23-A5CA-7C4BF6BEFB2B}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{F4CC68B0-A943-4DE4-A39D-3A64F3543E94}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{FC887035-B160-4C36-9896-08F149C9B841}
Successfully deleted: [Empty Folder] C:\Users\Dagr\appdata\local\{FE489491-394B-4E26-A90A-939AB8F06E73}



~~~ Chrome

Successfully deleted: [Registry Key] hkey_local_machine\software\policies\google\chrome\extensioninstallforcelist



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 06/29/2013 at 18:58:25.09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

# AdwCleaner v2.303 - Logfile created 06/29/2013 at 19:21:23
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Dagr - PALADIN-PC
# Boot Mode : Normal
# Running from : C:\Users\Dagr\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Dagr\AppData\Roaming\Mozilla\Firefox\Profiles\sbmtuome.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Users\Dagr\AppData\Roaming\Mozilla\Firefox\Profiles\sbmtuome.default\searchplugins\safesearch.xml
File Deleted : C:\Users\Dagr\AppData\Roaming\Mozilla\Firefox\Profiles\sbmtuome.default\searchplugins\SweetIm.xml
Folder Deleted : C:\Program Files\Updater By SweetPacks
Folder Deleted : C:\Users\Dagr\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl
Folder Deleted : C:\Users\Dagr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Folder Deleted : C:\Users\Dagr\AppData\Local\Smartbar
Folder Deleted : C:\Users\Dagr\AppData\Local\Temp\Smartbar
Folder Deleted : C:\Users\Dagr\AppData\Roaming\Mozilla\Firefox\Profiles\sbmtuome.default\extensions\wecarereminder@bryan
Folder Deleted : C:\Windows\SysWOW64\WNLT

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\DynConIE
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\SmartbarLog
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKCU\Software\WNLT
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4FBBF769-ECEB-420A-B536-133B1D505C36}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.BandObjectAttribute
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.BHO
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.DockingPanel
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBar
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBarBandObject
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarDisplayState
Key Deleted : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarMenuForm
Key Deleted : HKLM\Software\Classes\Installer\Features\FB6D58DD787439A4995AF3C00FEA8843
Key Deleted : HKLM\Software\Classes\Installer\Products\FB6D58DD787439A4995AF3C00FEA8843
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B12920CF-BE13-4C09-890D-1B6EFFFE2FBE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F773BB94-6C19-4643-A570-0E429103D1C3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F773BB94-6C19-4643-A570-0E429103D1C3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AC5B6CDA-8F90-4740-9A8C-28AC5D3C73FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{DD85D6BF-4787-4A93-99A5-3F0CF0AE8834}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16490

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Dagr\AppData\Roaming\Mozilla\Firefox\Profiles\sbmtuome.default\prefs.js

Deleted : user_pref("extensions.dynconff.cache.www.bleepingcomputer.com.content", "<package expire=\"3600\" es[...]
Deleted : user_pref("extensions.dynconff.cache.www.google.com.content", "<package expire=\"3600\" es=\"914\" p[...]
Deleted : user_pref("extensions.wecarereminder.merchHash", "{\"AFFILIATES\":{\"1-Sale-A-Day\":{\"name\":\"1 Sa[...]
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "Secure Search");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Google");
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.google.com/");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://www.goodsearch.com/search.aspx?toolbarchar[...]
Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.[...]

-\\ Google Chrome v27.0.1453.116

File : C:\Users\Dagr\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.2318] : homepage = "hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10045&barid={59BA06B9-DF96-1[...]
Deleted [l.2718] : urls_to_restore_on_startup = [ "hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10045[...]

*************************

AdwCleaner[S1].txt - [8419 octets] - [29/06/2013 19:21:23]

########## EOF - C:\AdwCleaner[S1].txt - [8479 octets] ##########
 

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Dagr (administrator) on 30-06-2013 at 09:31:07
Running from "C:\Users\Dagr\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.20) = Local Area Connection (Connected)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Paladin-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.va.comcast.net.

Ethernet adapter Tunngle:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : TAP-Win32 Adapter V9 (Tunngle)
   Physical Address. . . . . . . . . : 00-FF-24-0C-A4-0D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : hsd1.va.comcast.net.
   Description . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
   Physical Address. . . . . . . . . : 00-24-21-E0-03-A8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1cf2:baf8:be2f:1e87%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 98.218.97.192(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.254.0
   Lease Obtained. . . . . . . . . . : Saturday, June 29, 2013 7:23:47 PM
   Lease Expires . . . . . . . . . . : Wednesday, July 03, 2013 3:12:14 PM
   Default Gateway . . . . . . . . . : 98.218.96.1
   DHCP Server . . . . . . . . . . . : 69.252.67.5
   DHCPv6 IAID . . . . . . . . . . . : 234890273
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-BD-B5-02-00-24-21-E0-03-A8
   DNS Servers . . . . . . . . . . . : 75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{240CA40D-FA38-49DD-855D-9F8C3368B60D}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.hsd1.va.comcast.net.:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    google.com
Addresses:  2607:f8b0:4004:801::1000
      74.125.228.41
      74.125.228.39
      74.125.228.35
      74.125.228.40
      74.125.228.36
      74.125.228.46
      74.125.228.38
      74.125.228.34
      74.125.228.32
      74.125.228.37
      74.125.228.33


Pinging google.com [74.125.228.102] with 32 bytes of data:
Reply from 74.125.228.102: bytes=32 time=12ms TTL=56
Reply from 74.125.228.102: bytes=32 time=10ms TTL=56

Ping statistics for 74.125.228.102:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 10ms, Maximum = 12ms, Average = 11ms
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    yahoo.com
Addresses:  206.190.36.45
      98.139.183.24
      98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=30ms TTL=50
Reply from 98.139.183.24: bytes=32 time=40ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 30ms, Maximum = 40ms, Average = 35ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...00 ff 24 0c a4 0d ......TAP-Win32 Adapter V9 (Tunngle)
 10...00 24 21 e0 03 a8 ......Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      98.218.96.1    98.218.97.192     20
      98.218.96.0    255.255.254.0         On-link     98.218.97.192    276
    98.218.97.192  255.255.255.255         On-link     98.218.97.192    276
    98.218.97.255  255.255.255.255         On-link     98.218.97.192    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     98.218.97.192    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     98.218.97.192    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    276 fe80::/64                On-link
 10    276 fe80::1cf2:baf8:be2f:1e87/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/30/2013 05:22:34 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Multiple requestedPrivileges elements are not allowed in manifest.

Error: (06/30/2013 05:21:53 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/30/2013 01:47:13 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/30/2013 01:47:07 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/30/2013 01:09:08 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/30/2013 01:08:58 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (06/29/2013 07:24:09 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (06/29/2013 07:23:59 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (06/29/2013 07:23:58 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (06/29/2013 07:12:45 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (06/29/2013 07:12:44 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (06/29/2013 07:12:43 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
Abacus Aircraft Collectors Edition for FSX (Version: 1.02.0000)
Acrobat.com (Version: 2.3.0)
Acrobat.com (Version: 2.3.0.0)
Adobe AIR (Version: 3.7.0.2090)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player (Version: 10.2.0.22)
AnswerWorks 4.0 Runtime - English (Version: 4.0.101)
AnswerWorks 5.0 English Runtime (Version: 008.000.0003)
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
ArcSoft Panorama Maker 5 (Version: 5.0.1.25)
ASPCA Reminder by We-Care.com v4.1.22.1 (Version: 4.1.22.1)
avast! Free Antivirus (Version: 8.0.1489.0)
Bierbuden Autoupdate (remove only)
Bing Bar (Version: 7.0.609.0)
Call of Duty® 4 - Modern Warfare™ (Version: 1.6)
CameraHelperMsi (Version: 13.10.1217.0)
Canon G.726 WMP-Decoder (Version: 1.1.0.4)
Canon MovieEdit Task for ZoomBrowser EX (Version: 2.6.0.4)
Canon RAW Image Task for ZoomBrowser EX (Version: 0.9.3.9)
Canon Utilities CameraWindow (Version: 7.1.0.2)
Canon Utilities CameraWindow DC (Version: 7.1.0.7)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.4.2.16)
Canon Utilities MyCamera (Version: 6.4.0.5)
Canon Utilities MyCamera DC (Version: 7.0.1.8)
Canon Utilities PhotoStitch (Version: 3.1.21.45)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.7.1.9)
Canon Utilities ZoomBrowser EX (Version: 6.1.0.20)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.1.0.8)
CCleaner (Version: 3.01)
Coupon Printer for Windows (Version: 5.0.0.0)
Creative Audio Control Panel (Version: 2.00)
Creative System Information (Version: 1.10)
D3DX10 (Version: 15.4.2368.0902)
DiRT 2
EA SPORTS online 2008
EPSON Scan
EPSON WorkForce 500 Series Printer Uninstall
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
F1 2010 (Version: 1.0.0001.132)
F1 2010™
F1 2011
FileHippo.com Update Checker
Flight Deck 5 for FSX (Version: 1.01.0000)
Fraps
FreeArc 0.666 (Version: 0.666)
GameSpy Arcade
Google Apps (Version: 1.2.279.2381)
Google Chrome (Version: 27.0.1453.116)
Google Drive (Version: 1.10.4769.632)
Google Earth (Version: 5.2.1.1329)
Google Update Helper (Version: 1.3.21.145)
Google Updater (Version: 2.4.2432.1652)
Grand Theft Auto IV
Grand Theft Auto IV (Version: 1.0.0013.131)
Grand Theft Auto IV (Version: 1.00.0000)
Grand Theft Auto: Episodes from Liberty City
GT Power Expansion
GTA San Andreas (Version: 1.00.00001)
GTR Evolution
InfoSeeker (Version: 2.6.17)
IrfanView (remove only) (Version: 4.28)
Java 7 Update 11 (Version: 7.0.110)
Java Auto Updater (Version: 2.1.9.0)
Lead and Gold - Gangs of the Wild West
Logitech Gaming Software (Version: 8.35.18)
Logitech Gaming Software 8.35 (Version: 8.35.18)
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.10.1216.0)
LWS Gallery (Version: 13.10.1216.0)
LWS Help_main (Version: 13.10.1224.0)
LWS Launcher (Version: 13.10.1224.0)
LWS Motion Detection (Version: 13.10.1218.0)
LWS Pictures And Video (Version: 13.10.1218.0)
LWS Twitter (Version: 13.00.1216.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.00.1774.0)
LWS Webcam Software (Version: 13.00.1774.0)
LWS WLM Plugin (Version: 1.00.1774.0)
LWS YouTube Plugin (Version: 13.10.1216.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Age of Empires II
Microsoft Age of Empires II: The Conquerors Expansion
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Combat Flight Simulator 2
Microsoft Easy Assist v2 (Version: 8.1.6416.0)
Microsoft Flight Simulator X (Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 1 (Version: 10.0.61355.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Motorola Driver Installation 4.5.0 (Version: 4.5.0)
Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)
Mozilla Maintenance Service (Version: 22.0)
Mozilla Sunbird (0.9) (Version: 0.9 (en-US))
Mozilla Thunderbird 22.0 (x86 en-US) (Version: 22.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Nancy Drew: Secrets Can Kill REMASTERED (Version: 1.0.0)
NASCAR Thunder TM 2003
Nikon Message Center 2 (Version: 2.0.1)
NVIDIA 3D Vision Driver 311.06 (Version: 311.06)
NVIDIA Control Panel 311.06 (Version: 311.06)
NVIDIA Graphics Driver 311.06 (Version: 311.06)
NVIDIA Install Application (Version: 2.1002.108.688)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1106)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
OpenAL
OpenOffice.org 3.3 (Version: 3.3.9567)
Pando Media Booster (Version: 2.3.4.1)
Picasa 3 (Version: 3.9)
Picture Control Utility (Version: 1.2.2)
Porsche Wheel (Version: 8.10.7)
Python 2.7.2 (64-bit) (Version: 2.7.2150)
Quicken Rental Property Manager 2.0 (Version: 2.3)
QuickShare (Version: 1.39.60.10936)
QuickTime (Version: 7.72.80.56)
RACE 07
RACE 07: Andy Priaulx Crowne Plaza Raceway
RaceRoom The Game
RaidCall (Version: 6.0.8-1.0.552.46)
Rapture3D 2.4.9 Game
Recuva (Version: 1.40)
Revo Uninstaller 1.92 (Version: 1.92)
RSR v2.0 Aussie Track Pack
Setup Developer
Shattered Horizon
Shift 2 Unleashed
Sid Meier's Civilization V
simpleD Budget (a FREE GNU licensed Monthly Income Budgeting As
Skype Click to Call (Version: 5.10.9560)
Skype™ 6.1 (Version: 6.1.129)
Sound Blaster Tactic(3D) Alpha (Version: 1.0)
Sounds Best On Sound Blaster
Speccy (Version: 1.07)
SpywareBlaster 5.0 (Version: 5.0.0)
Steam (Version: 1.0.0.0)
TeamSpeak 3 Client (Version: 3.0.10.1)
TeamViewer 7 (Version: 7.0.15723)
Thrustmaster Force Feedback Driver (Version: 1.FFD.2009)
Tiger Woods PGA TOUR 08
TimeLeft (Version: 3.50)
Tomb Raider: Underworld 1.0
Tunngle beta
TurboCAD Deluxe 15 (Version: 15.1)
TurboFLOORPLAN Home & Landscape Pro (Version: 12.0)
TurboTax 2008
TurboTax 2008 WinPerFedFormset (Version: 008.000.0341)
TurboTax 2008 WinPerProgramHelp (Version: 008.000.0219)
TurboTax 2008 WinPerReleaseEngine (Version: 008.000.0197)
TurboTax 2008 WinPerTaxSupport (Version: 008.000.1007)
TurboTax 2008 WinPerUserEducation (Version: 008.000.0433)
TurboTax 2008 wrapper (Version: 008.000.0065)
TurboTax 2008 wvaiper (Version: 008.000.0122)
TurboTax 2009
TurboTax 2009 WinPerFedFormset (Version: 009.000.2881)
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0328)
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0245)
TurboTax 2009 wrapper (Version: 009.000.0145)
TurboTax 2009 wvaiper (Version: 009.000.0907)
TurboTax 2010
TurboTax 2010 WinPerFedFormset (Version: 010.000.5821)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0501)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0222)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2010 wvaiper (Version: 010.000.1874)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.3351)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0496)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0222)
TurboTax 2011 wrapper (Version: 011.000.0121)
TurboTax 2011 wvaiper (Version: 011.000.1774)
TurboTax 2012 (Version: 2012.0)
TurboTax 2012 WinPerFedFormset (Version: 012.000.2114)
TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0451)
TurboTax 2012 WinPerTaxSupport (Version: 012.000.0179)
TurboTax 2012 wrapper (Version: 012.000.0127)
TurboTax 2012 wvaiper (Version: 012.000.1354)
TurboTax Premier 2007
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Updater By SweetPacks 2.0.0.586 (Version: 2.0.0.586)
ViewNX 2 (Version: 2.1.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Wings of POWER II:  P51 Mustang
Wings of POWER: Heavy Bombers and Jets
World of Tanks v.0.6.6
wxPython 2.8.12.1 (unicode) for Python 2.7 (Version: 2.8.12.1-unicode)

========================= Devices: ================================

Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: TAP-Win32 Adapter V9 (Tunngle) - avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.20) - avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: WAN Miniport (IP) - avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: WAN Miniport (Network Monitor) - avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: WAN Miniport (IPv6) - avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 6135.12 MB
Available physical RAM: 2912.75 MB
Total Pagefile: 12268.42 MB
Available Pagefile: 8928.34 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.9 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:1370.57 GB) (Free:1052.45 GB) NTFS

========================= Users: ========================================

User accounts for \\PALADIN-PC

Administrator            Dagr                     Guest                    
UpdatusUser              


**** End of log ****
 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.06.29.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Dagr :: PALADIN-PC [administrator]

6/29/2013 8:22:48 PM
mbam-log-2013-06-29 (20-22-48).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 1219436
Time elapsed: 2 hour(s), 46 minute(s), 46 second(s)
20:10:28.0043 0780  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:10:28.0384 0780  ============================================================
20:10:28.0384 0780  Current date / time: 2013/06/29 20:10:28.0384
20:10:28.0384 0780  SystemInfo:
20:10:28.0384 0780  
20:10:28.0384 0780  OS Version: 6.1.7601 ServicePack: 1.0
20:10:28.0384 0780  Product type: Workstation
20:10:28.0384 0780  ComputerName: PALADIN-PC
20:10:28.0384 0780  UserName: Dagr
20:10:28.0384 0780  Windows directory: C:\Windows
20:10:28.0384 0780  System windows directory: C:\Windows
20:10:28.0384 0780  Running under WOW64
20:10:28.0384 0780  Processor architecture: Intel x64
20:10:28.0384 0780  Number of processors: 8
20:10:28.0384 0780  Page size: 0x1000
20:10:28.0384 0780  Boot type: Normal boot
20:10:28.0384 0780  ============================================================
20:10:29.0142 0780  Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:10:29.0153 0780  ============================================================
20:10:29.0153 0780  \Device\Harddisk0\DR0:
20:10:29.0154 0780  MBR partitions:
20:10:29.0154 0780  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3564800
20:10:29.0154 0780  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3565000, BlocksNum 0xAB522330
20:10:29.0154 0780  ============================================================
20:10:29.0170 0780  C: <-> \Device\Harddisk0\DR0\Partition2
20:10:29.0170 0780  ============================================================
20:10:29.0170 0780  Initialize success
20:10:29.0170 0780  ============================================================
20:11:23.0184 3724  ============================================================
20:11:23.0184 3724  Scan started
20:11:23.0184 3724  Mode: Manual; TDLFS;
20:11:23.0184 3724  ============================================================
20:11:23.0400 3724  ================ Scan system memory ========================
20:11:23.0400 3724  System memory - ok
20:11:23.0400 3724  ================ Scan services =============================
20:11:23.0501 3724  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
20:11:23.0503 3724  1394ohci - ok
20:11:23.0579 3724  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:11:23.0581 3724  ACDaemon - ok
20:11:23.0592 3724  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
20:11:23.0595 3724  ACPI - ok
20:11:23.0637 3724  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
20:11:23.0638 3724  AcpiPmi - ok
20:11:23.0740 3724  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:11:23.0741 3724  AdobeARMservice - ok
20:11:23.0835 3724  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:11:23.0837 3724  AdobeFlashPlayerUpdateSvc - ok
20:11:23.0870 3724  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
20:11:23.0874 3724  adp94xx - ok
20:11:23.0900 3724  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
20:11:23.0902 3724  adpahci - ok
20:11:23.0927 3724  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
20:11:23.0929 3724  adpu320 - ok
20:11:23.0944 3724  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
20:11:23.0945 3724  AeLookupSvc - ok
20:11:24.0002 3724  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
20:11:24.0006 3724  AFD - ok
20:11:24.0020 3724  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
20:11:24.0021 3724  agp440 - ok
20:11:24.0031 3724  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
20:11:24.0032 3724  ALG - ok
20:11:24.0036 3724  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
20:11:24.0037 3724  aliide - ok
20:11:24.0053 3724  ALSysIO - ok
20:11:24.0065 3724  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
20:11:24.0069 3724  amdide - ok
20:11:24.0087 3724  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
20:11:24.0088 3724  AmdK8 - ok
20:11:24.0101 3724  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
20:11:24.0101 3724  AmdPPM - ok
20:11:24.0123 3724  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
20:11:24.0125 3724  amdsata - ok
20:11:24.0152 3724  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
20:11:24.0154 3724  amdsbs - ok
20:11:24.0166 3724  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
20:11:24.0167 3724  amdxata - ok
20:11:24.0215 3724  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
20:11:24.0216 3724  AppID - ok
20:11:24.0243 3724  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
20:11:24.0244 3724  AppIDSvc - ok
20:11:24.0284 3724  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
20:11:24.0286 3724  Appinfo - ok
20:11:24.0303 3724  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
20:11:24.0304 3724  arc - ok
20:11:24.0317 3724  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
20:11:24.0318 3724  arcsas - ok
20:11:24.0375 3724  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
20:11:24.0375 3724  aswFsBlk - ok
20:11:24.0423 3724  [ 36949EB7E71C5779C5163AF6AFB2A161 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
20:11:24.0424 3724  aswKbd - ok
20:11:24.0477 3724  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
20:11:24.0478 3724  aswMonFlt - ok
20:11:24.0516 3724  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
20:11:24.0517 3724  aswRdr - ok
20:11:24.0556 3724  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
20:11:24.0556 3724  aswRvrt - ok
20:11:24.0617 3724  [ 8C0800CDB501CFC1164B286A0478DC10 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
20:11:24.0625 3724  aswSnx - ok
20:11:24.0641 3724  [ 3815DB16CDA62190F5C0A65118F3D714 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
20:11:24.0644 3724  aswSP - ok
20:11:24.0660 3724  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
20:11:24.0661 3724  aswTdi - ok
20:11:24.0700 3724  [ 22F521108881DC59837F6FC614E0568F ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
20:11:24.0702 3724  aswVmm - ok
20:11:24.0717 3724  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
20:11:24.0717 3724  AsyncMac - ok
20:11:24.0750 3724  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
20:11:24.0751 3724  atapi - ok
20:11:24.0812 3724  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:11:24.0817 3724  AudioEndpointBuilder - ok
20:11:24.0828 3724  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
20:11:24.0833 3724  AudioSrv - ok
20:11:24.0919 3724  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:11:24.0920 3724  avast! Antivirus - ok
20:11:24.0963 3724  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
20:11:24.0964 3724  AxInstSV - ok
20:11:24.0992 3724  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
20:11:24.0995 3724  b06bdrv - ok
20:11:25.0023 3724  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
20:11:25.0025 3724  b57nd60a - ok
20:11:25.0108 3724  [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
20:11:25.0109 3724  BBSvc - ok
20:11:25.0137 3724  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
20:11:25.0139 3724  BDESVC - ok
20:11:25.0149 3724  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
20:11:25.0149 3724  Beep - ok
20:11:25.0185 3724  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
20:11:25.0194 3724  BITS - ok
20:11:25.0213 3724  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
20:11:25.0213 3724  blbdrive - ok
20:11:25.0253 3724  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
20:11:25.0254 3724  bowser - ok
20:11:25.0272 3724  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:11:25.0273 3724  BrFiltLo - ok
20:11:25.0297 3724  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:11:25.0298 3724  BrFiltUp - ok
20:11:25.0334 3724  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
20:11:25.0336 3724  Browser - ok
20:11:25.0360 3724  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
20:11:25.0362 3724  Brserid - ok
20:11:25.0377 3724  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
20:11:25.0377 3724  BrSerWdm - ok
20:11:25.0384 3724  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
20:11:25.0385 3724  BrUsbMdm - ok
20:11:25.0405 3724  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
20:11:25.0405 3724  BrUsbSer - ok
20:11:25.0442 3724  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
20:11:25.0442 3724  BthEnum - ok
20:11:25.0454 3724  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
20:11:25.0455 3724  BTHMODEM - ok
20:11:25.0485 3724  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
20:11:25.0486 3724  BthPan - ok
20:11:25.0538 3724  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
20:11:25.0541 3724  BTHPORT - ok
20:11:25.0573 3724  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
20:11:25.0574 3724  bthserv - ok
20:11:25.0604 3724  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
20:11:25.0605 3724  BTHUSB - ok
20:11:25.0624 3724  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
20:11:25.0625 3724  cdfs - ok
20:11:25.0667 3724  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
20:11:25.0669 3724  cdrom - ok
20:11:25.0711 3724  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
20:11:25.0712 3724  CertPropSvc - ok
20:11:25.0723 3724  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
20:11:25.0724 3724  circlass - ok
20:11:25.0741 3724  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
20:11:25.0744 3724  CLFS - ok
20:11:25.0795 3724  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:11:25.0796 3724  clr_optimization_v2.0.50727_32 - ok
20:11:25.0822 3724  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:11:25.0824 3724  clr_optimization_v2.0.50727_64 - ok
20:11:25.0906 3724  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:11:25.0907 3724  clr_optimization_v4.0.30319_32 - ok
20:11:25.0921 3724  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:11:25.0923 3724  clr_optimization_v4.0.30319_64 - ok
20:11:25.0960 3724  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
20:11:25.0961 3724  CmBatt - ok
20:11:25.0980 3724  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
20:11:25.0980 3724  cmdide - ok
20:11:26.0025 3724  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
20:11:26.0029 3724  CNG - ok
20:11:26.0041 3724  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
20:11:26.0041 3724  Compbatt - ok
20:11:26.0092 3724  [ 41F879D9D141CDCE729D87BA0E95F731 ] CompFilter64    C:\Windows\system32\DRIVERS\lvbflt64.sys
20:11:26.0093 3724  CompFilter64 - ok
20:11:26.0110 3724  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
20:11:26.0111 3724  CompositeBus - ok
20:11:26.0123 3724  COMSysApp - ok
20:11:26.0146 3724  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
20:11:26.0147 3724  crcdisk - ok
20:11:26.0205 3724  [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
20:11:26.0206 3724  Creative ALchemy AL6 Licensing Service - ok
20:11:26.0216 3724  [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
20:11:26.0217 3724  Creative Audio Engine Licensing Service - ok
20:11:26.0253 3724  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
20:11:26.0255 3724  CryptSvc - ok
20:11:26.0291 3724  [ B3B541B3B25ADB02D793C51953B22491 ] CT20XUT         C:\Windows\system32\drivers\CT20XUT.SYS
20:11:26.0293 3724  CT20XUT - ok
20:11:26.0305 3724  [ B3B541B3B25ADB02D793C51953B22491 ] CT20XUT.SYS     C:\Windows\System32\drivers\CT20XUT.SYS
20:11:26.0307 3724  CT20XUT.SYS - ok
20:11:26.0333 3724  [ F2E098F140B769AE62803E89230F11A9 ] ctac32k         C:\Windows\system32\drivers\ctac32k.sys
20:11:26.0336 3724  ctac32k - ok
20:11:26.0353 3724  [ 5C315E9DABF63D9D12973585A6113066 ] ctaud2k         C:\Windows\system32\drivers\ctaud2k.sys
20:11:26.0358 3724  ctaud2k - ok
20:11:26.0406 3724  [ 1B8194450EB013CB6E79CE5503D1B0B5 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
20:11:26.0409 3724  CTAudSvcService - ok
20:11:26.0437 3724  [ 59D681564C6D5CD72890082925501BE9 ] CTEXFIFX        C:\Windows\system32\drivers\CTEXFIFX.SYS
20:11:26.0447 3724  CTEXFIFX - ok
20:11:26.0478 3724  [ 59D681564C6D5CD72890082925501BE9 ] CTEXFIFX.SYS    C:\Windows\System32\drivers\CTEXFIFX.SYS
20:11:26.0488 3724  CTEXFIFX.SYS - ok
20:11:26.0498 3724  [ D0EBCFF35FE9A4F9D3CA2FD6A38BEE56 ] CTHWIUT         C:\Windows\system32\drivers\CTHWIUT.SYS
20:11:26.0499 3724  CTHWIUT - ok
20:11:26.0502 3724  [ D0EBCFF35FE9A4F9D3CA2FD6A38BEE56 ] CTHWIUT.SYS     C:\Windows\System32\drivers\CTHWIUT.SYS
20:11:26.0503 3724  CTHWIUT.SYS - ok
20:11:26.0513 3724  [ EF305CAB6295B8A250A77A7FD5F9F113 ] ctprxy2k        C:\Windows\system32\drivers\ctprxy2k.sys
20:11:26.0513 3724  ctprxy2k - ok
20:11:26.0529 3724  [ 01323C189318B92BB7781B911DE9D62B ] ctsfm2k         C:\Windows\system32\drivers\ctsfm2k.sys
20:11:26.0530 3724  ctsfm2k - ok
20:11:26.0564 3724  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
20:11:26.0571 3724  DcomLaunch - ok
20:11:26.0593 3724  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
20:11:26.0595 3724  defragsvc - ok
20:11:26.0623 3724  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
20:11:26.0624 3724  DfsC - ok
20:11:26.0647 3724  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
20:11:26.0650 3724  Dhcp - ok
20:11:26.0669 3724  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
20:11:26.0670 3724  discache - ok
20:11:26.0703 3724  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
20:11:26.0704 3724  Disk - ok
20:11:26.0738 3724  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
20:11:26.0741 3724  Dnscache - ok
20:11:26.0778 3724  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
20:11:26.0781 3724  dot3svc - ok
20:11:26.0813 3724  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
20:11:26.0816 3724  DPS - ok
20:11:26.0854 3724  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
20:11:26.0854 3724  drmkaud - ok
20:11:26.0897 3724  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
20:11:26.0904 3724  DXGKrnl - ok
20:11:26.0932 3724  [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD ] E1G60           C:\Windows\system32\DRIVERS\E1G6032E.sys
20:11:26.0933 3724  E1G60 - ok
20:11:26.0943 3724  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
20:11:26.0945 3724  EapHost - ok
20:11:27.0020 3724  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
20:11:27.0039 3724  ebdrv - ok
20:11:27.0060 3724  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
20:11:27.0062 3724  EFS - ok
20:11:27.0121 3724  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
20:11:27.0125 3724  ehRecvr - ok
20:11:27.0142 3724  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
20:11:27.0144 3724  ehSched - ok
20:11:27.0168 3724  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
20:11:27.0172 3724  elxstor - ok
20:11:27.0191 3724  [ 1B68C7DDD39811DF63FC04AF937BE91A ] emupia          C:\Windows\system32\drivers\emupia2k.sys
20:11:27.0192 3724  emupia - ok
20:11:27.0205 3724  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
20:11:27.0206 3724  ErrDev - ok
20:11:27.0223 3724  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
20:11:27.0227 3724  EventSystem - ok
20:11:27.0253 3724  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
20:11:27.0254 3724  exfat - ok
20:11:27.0269 3724  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
20:11:27.0270 3724  fastfat - ok
20:11:27.0300 3724  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
20:11:27.0305 3724  Fax - ok
20:11:27.0321 3724  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
20:11:27.0322 3724  fdc - ok
20:11:27.0335 3724  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
20:11:27.0337 3724  fdPHost - ok
20:11:27.0344 3724  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
20:11:27.0346 3724  FDResPub - ok
20:11:27.0361 3724  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
20:11:27.0362 3724  FileInfo - ok
20:11:27.0371 3724  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
20:11:27.0372 3724  Filetrace - ok
20:11:27.0382 3724  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
20:11:27.0383 3724  flpydisk - ok
20:11:27.0434 3724  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
20:11:27.0436 3724  FltMgr - ok
20:11:27.0489 3724  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
20:11:27.0498 3724  FontCache - ok
20:11:27.0543 3724  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:11:27.0544 3724  FontCache3.0.0.0 - ok
20:11:27.0563 3724  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
20:11:27.0564 3724  FsDepends - ok
20:11:27.0608 3724  [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
20:11:27.0609 3724  fssfltr - ok
20:11:27.0675 3724  [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:11:27.0685 3724  fsssvc - ok
20:11:27.0710 3724  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
20:11:27.0710 3724  Fs_Rec - ok
20:11:27.0743 3724  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
20:11:27.0744 3724  fvevol - ok
20:11:27.0772 3724  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
20:11:27.0773 3724  gagp30kx - ok
20:11:27.0796 3724  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
20:11:27.0803 3724  gpsvc - ok
20:11:27.0864 3724  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:11:27.0865 3724  gupdate - ok
20:11:27.0894 3724  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:11:27.0895 3724  gupdatem - ok
20:11:27.0941 3724  [ 408DDD80EEDE47175F6844817B90213E ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:11:27.0942 3724  gusvc - ok
20:11:27.0973 3724  [ C1C61E83F44B105A4A131CB0C583174C ] ha20x2k         C:\Windows\system32\drivers\ha20x2k.sys
20:11:27.0982 3724  ha20x2k - ok
20:11:27.0999 3724  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
20:11:28.0000 3724  hcw85cir - ok
20:11:28.0033 3724  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:11:28.0036 3724  HdAudAddService - ok
20:11:28.0054 3724  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
20:11:28.0055 3724  HDAudBus - ok
20:11:28.0067 3724  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
20:11:28.0070 3724  HidBatt - ok
20:11:28.0086 3724  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
20:11:28.0087 3724  HidBth - ok
20:11:28.0104 3724  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
20:11:28.0105 3724  HidIr - ok
20:11:28.0123 3724  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
20:11:28.0125 3724  hidserv - ok
20:11:28.0161 3724  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
20:11:28.0161 3724  HidUsb - ok
20:11:28.0195 3724  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
20:11:28.0198 3724  hkmsvc - ok
20:11:28.0236 3724  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:11:28.0240 3724  HomeGroupListener - ok
20:11:28.0274 3724  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:11:28.0279 3724  HomeGroupProvider - ok
20:11:28.0307 3724  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
20:11:28.0308 3724  HpSAMD - ok
20:11:28.0357 3724  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
20:11:28.0363 3724  HTTP - ok
20:11:28.0390 3724  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
20:11:28.0391 3724  hwpolicy - ok
20:11:28.0415 3724  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
20:11:28.0416 3724  i8042prt - ok
20:11:28.0453 3724  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
20:11:28.0456 3724  iaStorV - ok
20:11:28.0518 3724  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:11:28.0519 3724  IDriverT - ok
20:11:28.0559 3724  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:11:28.0566 3724  idsvc - ok
20:11:28.0601 3724  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
20:11:28.0602 3724  iirsp - ok
20:11:28.0633 3724  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
20:11:28.0640 3724  IKEEXT - ok
20:11:28.0655 3724  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
20:11:28.0656 3724  intelide - ok
20:11:28.0680 3724  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
20:11:28.0681 3724  intelppm - ok
20:11:28.0792 3724  [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
20:11:28.0793 3724  IntuitUpdateService - ok
20:11:28.0846 3724  [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
20:11:28.0846 3724  IntuitUpdateServiceV4 - ok
20:11:28.0877 3724  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
20:11:28.0879 3724  IPBusEnum - ok
20:11:28.0910 3724  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:11:28.0910 3724  IpFilterDriver - ok
20:11:28.0951 3724  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
20:11:28.0952 3724  IPMIDRV - ok
20:11:28.0969 3724  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
20:11:28.0971 3724  IPNAT - ok
20:11:28.0983 3724  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
20:11:28.0983 3724  IRENUM - ok
20:11:28.0992 3724  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
20:11:28.0993 3724  isapnp - ok
20:11:29.0009 3724  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
20:11:29.0011 3724  iScsiPrt - ok
20:11:29.0015 3724  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
20:11:29.0016 3724  kbdclass - ok
20:11:29.0039 3724  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
20:11:29.0040 3724  kbdhid - ok
20:11:29.0051 3724  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
20:11:29.0053 3724  KeyIso - ok
20:11:29.0090 3724  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
20:11:29.0092 3724  KSecDD - ok
20:11:29.0123 3724  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
20:11:29.0125 3724  KSecPkg - ok
20:11:29.0132 3724  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
20:11:29.0133 3724  ksthunk - ok
20:11:29.0180 3724  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
20:11:29.0186 3724  KtmRm - ok
20:11:29.0214 3724  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
20:11:29.0219 3724  LanmanServer - ok
20:11:29.0250 3724  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:11:29.0255 3724  LanmanWorkstation - ok
20:11:29.0289 3724  [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
20:11:29.0290 3724  LGBusEnum - ok
20:11:29.0297 3724  [ 14179E7B64F8A17AEA464D4E2D271FAA ] LGSHidFilt      C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
20:11:29.0298 3724  LGSHidFilt - ok
20:11:29.0327 3724  [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
20:11:29.0328 3724  LGVirHid - ok
20:11:29.0346 3724  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
20:11:29.0347 3724  lltdio - ok
20:11:29.0376 3724  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
20:11:29.0380 3724  lltdsvc - ok
20:11:29.0385 3724  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
20:11:29.0387 3724  lmhosts - ok
20:11:29.0405 3724  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
20:11:29.0406 3724  LSI_FC - ok
20:11:29.0435 3724  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
20:11:29.0436 3724  LSI_SAS - ok
20:11:29.0462 3724  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:11:29.0463 3724  LSI_SAS2 - ok
20:11:29.0490 3724  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:11:29.0492 3724  LSI_SCSI - ok
20:11:29.0511 3724  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
20:11:29.0513 3724  luafv - ok
20:11:29.0550 3724  [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
20:11:29.0550 3724  LVPr2M64 - ok
20:11:29.0572 3724  [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
20:11:29.0572 3724  LVPr2Mon - ok
20:11:29.0641 3724  [ 9CD0DC863BE5D40A762F7D84F11A8471 ] LVPrcS64        C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
20:11:29.0643 3724  LVPrcS64 - ok
20:11:29.0656 3724  [ A43A6CBEA073990A784603EF065A281B ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
20:11:29.0659 3724  LVRS64 - ok
20:11:29.0773 3724  [ 4350876AB0D0C77D0B40A1C85935C96B ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
20:11:29.0799 3724  LVUVC64 - ok
20:11:29.0846 3724  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
20:11:29.0846 3724  MBAMProtector - ok
20:11:29.0911 3724  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:11:29.0913 3724  MBAMScheduler - ok
20:11:29.0966 3724  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:11:29.0971 3724  MBAMService - ok
20:11:30.0002 3724  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
20:11:30.0005 3724  Mcx2Svc - ok
20:11:30.0034 3724  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
20:11:30.0035 3724  megasas - ok
20:11:30.0054 3724  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
20:11:30.0056 3724  MegaSR - ok
20:11:30.0079 3724  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
20:11:30.0082 3724  MMCSS - ok
20:11:30.0091 3724  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
20:11:30.0092 3724  Modem - ok
20:11:30.0127 3724  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
20:11:30.0128 3724  monitor - ok
20:11:30.0170 3724  [ E90ABA3C6F01BE2C456C4AA857B28646 ] motmodem        C:\Windows\system32\DRIVERS\motmodem.sys
20:11:30.0171 3724  motmodem - ok
20:11:30.0233 3724  [ BB9DE58AC6513DA62C005D92E2DB4981 ] MotoConnect Service C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe
20:11:30.0234 3724  MotoConnect Service - ok
20:11:30.0270 3724  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
20:11:30.0271 3724  mouclass - ok
20:11:30.0292 3724  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
20:11:30.0293 3724  mouhid - ok
20:11:30.0329 3724  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
20:11:30.0330 3724  mountmgr - ok
20:11:30.0386 3724  [ 6D92816D6C90979BC408D19F860567AE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:11:30.0387 3724  MozillaMaintenance - ok
20:11:30.0409 3724  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
20:11:30.0410 3724  mpio - ok
20:11:30.0421 3724  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
20:11:30.0422 3724  mpsdrv - ok
20:11:30.0450 3724  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
20:11:30.0452 3724  MRxDAV - ok
20:11:30.0485 3724  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
20:11:30.0487 3724  mrxsmb - ok
20:11:30.0522 3724  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:11:30.0525 3724  mrxsmb10 - ok
20:11:30.0536 3724  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:11:30.0537 3724  mrxsmb20 - ok
20:11:30.0555 3724  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
20:11:30.0556 3724  msahci - ok
20:11:30.0570 3724  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
20:11:30.0572 3724  msdsm - ok
20:11:30.0587 3724  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
20:11:30.0590 3724  MSDTC - ok
20:11:30.0616 3724  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
20:11:30.0617 3724  Msfs - ok
20:11:30.0626 3724  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
20:11:30.0627 3724  mshidkmdf - ok
20:11:30.0631 3724  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
20:11:30.0632 3724  msisadrv - ok
20:11:30.0660 3724  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
20:11:30.0664 3724  MSiSCSI - ok
20:11:30.0666 3724  msiserver - ok
20:11:30.0693 3724  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
20:11:30.0694 3724  MSKSSRV - ok
20:11:30.0711 3724  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
20:11:30.0712 3724  MSPCLOCK - ok
20:11:30.0716 3724  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
20:11:30.0717 3724  MSPQM - ok
20:11:30.0755 3724  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
20:11:30.0758 3724  MsRPC - ok
20:11:30.0773 3724  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
20:11:30.0774 3724  mssmbios - ok
20:11:30.0787 3724  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
20:11:30.0788 3724  MSTEE - ok
20:11:30.0804 3724  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
20:11:30.0804 3724  MTConfig - ok
20:11:30.0830 3724  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
20:11:30.0831 3724  Mup - ok
20:11:30.0847 3724  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
20:11:30.0854 3724  napagent - ok
20:11:30.0873 3724  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
20:11:30.0875 3724  NativeWifiP - ok
20:11:30.0922 3724  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
20:11:30.0929 3724  NDIS - ok
20:11:30.0945 3724  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
20:11:30.0946 3724  NdisCap - ok
20:11:30.0950 3724  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
20:11:30.0950 3724  NdisTapi - ok
20:11:30.0981 3724  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
20:11:30.0982 3724  Ndisuio - ok
20:11:31.0014 3724  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
20:11:31.0015 3724  NdisWan - ok
20:11:31.0047 3724  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
20:11:31.0048 3724  NDProxy - ok
20:11:31.0062 3724  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
20:11:31.0067 3724  NetBIOS - ok
20:11:31.0077 3724  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
20:11:31.0079 3724  NetBT - ok
20:11:31.0091 3724  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
20:11:31.0093 3724  Netlogon - ok
20:11:31.0119 3724  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
20:11:31.0124 3724  Netman - ok
20:11:31.0144 3724  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
20:11:31.0150 3724  netprofm - ok
20:11:31.0178 3724  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:11:31.0179 3724  NetTcpPortSharing - ok
20:11:31.0198 3724  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
20:11:31.0199 3724  nfrd960 - ok
20:11:31.0232 3724  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
20:11:31.0237 3724  NlaSvc - ok
20:11:31.0249 3724  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
20:11:31.0250 3724  Npfs - ok
20:11:31.0258 3724  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
20:11:31.0261 3724  nsi - ok
20:11:31.0268 3724  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
20:11:31.0269 3724  nsiproxy - ok
20:11:31.0317 3724  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
20:11:31.0329 3724  Ntfs - ok
20:11:31.0339 3724  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
20:11:31.0340 3724  Null - ok
20:11:31.0543 3724  [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:11:31.0589 3724  nvlddmkm - ok
20:11:31.0606 3724  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
20:11:31.0607 3724  nvraid - ok
20:11:31.0633 3724  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
20:11:31.0635 3724  nvstor - ok
20:11:31.0677 3724  [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc           C:\Windows\system32\nvvsvc.exe
20:11:31.0686 3724  nvsvc - ok
20:11:31.0730 3724  [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:11:31.0737 3724  nvUpdatusService - ok
20:11:31.0750 3724  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
20:11:31.0750 3724  nv_agp - ok
20:11:31.0816 3724  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:11:31.0820 3724  odserv - ok
20:11:31.0833 3724  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
20:11:31.0833 3724  ohci1394 - ok
20:11:31.0851 3724  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:11:31.0853 3724  ose - ok
20:11:31.0870 3724  [ EB8724534CEE0977EAC4878812682F6B ] ossrv           C:\Windows\system32\drivers\ctoss2k.sys
20:11:31.0871 3724  ossrv - ok
20:11:31.0891 3724  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
20:11:31.0895 3724  p2pimsvc - ok
20:11:31.0905 3724  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
20:11:31.0909 3724  p2psvc - ok
20:11:31.0919 3724  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
20:11:31.0920 3724  Parport - ok
20:11:31.0943 3724  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
20:11:31.0944 3724  partmgr - ok
20:11:31.0954 3724  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
20:11:31.0958 3724  PcaSvc - ok
20:11:31.0974 3724  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
20:11:31.0976 3724  pci - ok
20:11:31.0984 3724  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
20:11:31.0984 3724  pciide - ok
20:11:32.0009 3724  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
20:11:32.0011 3724  pcmcia - ok
20:11:32.0039 3724  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
20:11:32.0040 3724  pcw - ok
20:11:32.0058 3724  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
20:11:32.0063 3724  PEAUTH - ok
20:11:32.0122 3724  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
20:11:32.0125 3724  PerfHost - ok
20:11:32.0180 3724  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
20:11:32.0193 3724  pla - ok
20:11:32.0235 3724  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
20:11:32.0242 3724  PlugPlay - ok
20:11:32.0249 3724  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
20:11:32.0252 3724  PNRPAutoReg - ok
20:11:32.0259 3724  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
20:11:32.0264 3724  PNRPsvc - ok
20:11:32.0311 3724  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
20:11:32.0317 3724  PolicyAgent - ok
20:11:32.0356 3724  [ 767E44393C838BB4393FE8DCCBD90827 ] PorscheWheelFilterUsb C:\Windows\system32\DRIVERS\PWFilterUsb.sys
20:11:32.0357 3724  PorscheWheelFilterUsb - ok
20:11:32.0375 3724  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
20:11:32.0380 3724  Power - ok
20:11:32.0409 3724  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
20:11:32.0410 3724  PptpMiniport - ok
20:11:32.0430 3724  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
20:11:32.0431 3724  Processor - ok
20:11:32.0465 3724  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
20:11:32.0470 3724  ProfSvc - ok
20:11:32.0482 3724  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:11:32.0485 3724  ProtectedStorage - ok
20:11:32.0517 3724  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
20:11:32.0519 3724  Psched - ok
20:11:32.0563 3724  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
20:11:32.0574 3724  ql2300 - ok
20:11:32.0607 3724  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
20:11:32.0608 3724  ql40xx - ok
20:11:32.0629 3724  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
20:11:32.0634 3724  QWAVE - ok
20:11:32.0643 3724  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
20:11:32.0644 3724  QWAVEdrv - ok
20:11:32.0662 3724  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
20:11:32.0663 3724  RasAcd - ok
20:11:32.0684 3724  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
20:11:32.0685 3724  RasAgileVpn - ok
20:11:32.0697 3724  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
20:11:32.0701 3724  RasAuto - ok
20:11:32.0707 3724  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
20:11:32.0708 3724  Rasl2tp - ok
20:11:32.0723 3724  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
20:11:32.0729 3724  RasMan - ok
20:11:32.0739 3724  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
20:11:32.0741 3724  RasPppoe - ok
20:11:32.0746 3724  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
20:11:32.0747 3724  RasSstp - ok
20:11:32.0759 3724  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
20:11:32.0761 3724  rdbss - ok
20:11:32.0777 3724  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
20:11:32.0777 3724  rdpbus - ok
20:11:32.0792 3724  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
20:11:32.0793 3724  RDPCDD - ok
20:11:32.0816 3724  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
20:11:32.0816 3724  RDPENCDD - ok
20:11:32.0828 3724  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
20:11:32.0829 3724  RDPREFMP - ok
20:11:32.0859 3724  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
20:11:32.0862 3724  RDPWD - ok
20:11:32.0885 3724  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
20:11:32.0887 3724  rdyboost - ok
20:11:32.0921 3724  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
20:11:32.0924 3724  RemoteAccess - ok
20:11:32.0940 3724  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
20:11:32.0945 3724  RemoteRegistry - ok
20:11:32.0974 3724  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
20:11:32.0976 3724  RFCOMM - ok
20:11:32.0990 3724  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
20:11:32.0994 3724  RpcEptMapper - ok
20:11:32.0998 3724  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
20:11:33.0000 3724  RpcLocator - ok
20:11:33.0035 3724  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
20:11:33.0041 3724  RpcSs - ok
20:11:33.0046 3724  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
20:11:33.0047 3724  rspndr - ok
20:11:33.0079 3724  [ BAEFEE35D27A5440D35092CE10267BEC ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
20:11:33.0081 3724  RTL8167 - ok
20:11:33.0090 3724  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
20:11:33.0092 3724  SamSs - ok
20:11:33.0125 3724  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
20:11:33.0127 3724  sbp2port - ok
20:11:33.0149 3724  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
20:11:33.0154 3724  SCardSvr - ok
20:11:33.0181 3724  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
20:11:33.0182 3724  scfilter - ok
20:11:33.0228 3724  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
20:11:33.0239 3724  Schedule - ok
20:11:33.0273 3724  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
20:11:33.0275 3724  SCPolicySvc - ok
20:11:33.0310 3724  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
20:11:33.0315 3724  SDRSVC - ok
20:11:33.0377 3724  [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort         C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
20:11:33.0379 3724  SeaPort - ok
20:11:33.0390 3724  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
20:11:33.0391 3724  secdrv - ok
20:11:33.0395 3724  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
20:11:33.0399 3724  seclogon - ok
20:11:33.0415 3724  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
20:11:33.0418 3724  SENS - ok
20:11:33.0446 3724  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
20:11:33.0450 3724  SensrSvc - ok
20:11:33.0466 3724  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
20:11:33.0467 3724  Serenum - ok
20:11:33.0492 3724  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
20:11:33.0494 3724  Serial - ok
20:11:33.0502 3724  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
20:11:33.0503 3724  sermouse - ok
20:11:33.0536 3724  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
20:11:33.0540 3724  SessionEnv - ok
20:11:33.0572 3724  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
20:11:33.0573 3724  sffdisk - ok
20:11:33.0587 3724  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
20:11:33.0588 3724  sffp_mmc - ok
20:11:33.0594 3724  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
20:11:33.0595 3724  sffp_sd - ok
20:11:33.0615 3724  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
20:11:33.0615 3724  sfloppy - ok
20:11:33.0643 3724  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
20:11:33.0647 3724  SharedAccess - ok
20:11:33.0678 3724  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:11:33.0684 3724  ShellHWDetection - ok
20:11:33.0710 3724  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:11:33.0711 3724  SiSRaid2 - ok
20:11:33.0740 3724  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
20:11:33.0741 3724  SiSRaid4 - ok
20:11:33.0803 3724  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
20:11:33.0805 3724  SkypeUpdate - ok
20:11:33.0837 3724  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
20:11:33.0839 3724  Smb - ok
20:11:33.0864 3724  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
20:11:33.0868 3724  SNMPTRAP - ok
20:11:33.0872 3724  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
20:11:33.0873 3724  spldr - ok
20:11:33.0912 3724  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
20:11:33.0918 3724  Spooler - ok
20:11:33.0997 3724  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
20:11:34.0023 3724  sppsvc - ok
20:11:34.0046 3724  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
20:11:34.0049 3724  sppuinotify - ok
20:11:34.0095 3724  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
20:11:34.0098 3724  srv - ok
20:11:34.0111 3724  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
20:11:34.0115 3724  srv2 - ok
20:11:34.0129 3724  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
20:11:34.0131 3724  srvnet - ok
20:11:34.0155 3724  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
20:11:34.0160 3724  SSDPSRV - ok
20:11:34.0170 3724  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
20:11:34.0175 3724  SstpSvc - ok
20:11:34.0199 3724  Steam Client Service - ok
20:11:34.0249 3724  [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:11:34.0251 3724  Stereo Service - ok
20:11:34.0273 3724  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
20:11:34.0274 3724  stexstor - ok
20:11:34.0335 3724  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
20:11:34.0343 3724  stisvc - ok
20:11:34.0373 3724  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
20:11:34.0374 3724  swenum - ok
20:11:34.0390 3724  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
20:11:34.0398 3724  swprv - ok
20:11:34.0460 3724  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
20:11:34.0474 3724  SysMain - ok
20:11:34.0497 3724  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:11:34.0500 3724  TabletInputService - ok
20:11:34.0550 3724  [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
20:11:34.0551 3724  tap0901t - ok
20:11:34.0567 3724  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
20:11:34.0572 3724  TapiSrv - ok
20:11:34.0579 3724  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
20:11:34.0582 3724  TBS - ok
20:11:34.0634 3724  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
20:11:34.0648 3724  Tcpip - ok
20:11:34.0693 3724  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
20:11:34.0707 3724  TCPIP6 - ok
20:11:34.0737 3724  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
20:11:34.0738 3724  tcpipreg - ok
20:11:34.0750 3724  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
20:11:34.0750 3724  TDPIPE - ok
20:11:34.0789 3724  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
20:11:34.0790 3724  TDTCP - ok
20:11:34.0805 3724  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
20:11:34.0807 3724  tdx - ok
20:11:34.0919 3724  [ C9B9373A0A430C11F0213E359D0772B2 ] TeamViewer7     C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
20:11:34.0937 3724  TeamViewer7 - ok
20:11:34.0971 3724  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
20:11:34.0972 3724  TermDD - ok
20:11:34.0992 3724  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
20:11:34.0999 3724  TermService - ok
20:11:35.0005 3724  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
20:11:35.0009 3724  Themes - ok
20:11:35.0025 3724  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
20:11:35.0027 3724  THREADORDER - ok
20:11:35.0035 3724  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
20:11:35.0038 3724  TrkWks - ok
20:11:35.0095 3724  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:11:35.0096 3724  TrustedInstaller - ok
20:11:35.0127 3724  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
20:11:35.0128 3724  tssecsrv - ok
20:11:35.0163 3724  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
20:11:35.0164 3724  TsUsbFlt - ok
20:11:35.0198 3724  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
20:11:35.0199 3724  tunnel - ok
20:11:35.0250 3724  [ BA28AF5A3F1F868919BA5F6476EBECDA ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
20:11:35.0253 3724  TunngleService - ok
20:11:35.0272 3724  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
20:11:35.0273 3724  uagp35 - ok
20:11:35.0297 3724  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
20:11:35.0300 3724  udfs - ok
20:11:35.0319 3724  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
20:11:35.0324 3724  UI0Detect - ok
20:11:35.0350 3724  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
20:11:35.0351 3724  uliagpkx - ok
20:11:35.0386 3724  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
20:11:35.0387 3724  umbus - ok
20:11:35.0411 3724  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
20:11:35.0412 3724  UmPass - ok
20:11:35.0433 3724  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
20:11:35.0440 3724  upnphost - ok
20:11:35.0449 3724  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
20:11:35.0450 3724  usbaudio - ok
20:11:35.0460 3724  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
20:11:35.0461 3724  usbccgp - ok
20:11:35.0484 3724  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
20:11:35.0485 3724  usbcir - ok
20:11:35.0499 3724  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
20:11:35.0500 3724  usbehci - ok
20:11:35.0507 3724  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
20:11:35.0509 3724  usbhub - ok
20:11:35.0523 3724  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
20:11:35.0523 3724  usbohci - ok
20:11:35.0535 3724  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
20:11:35.0536 3724  usbprint - ok
20:11:35.0563 3724  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
20:11:35.0564 3724  usbscan - ok
20:11:35.0583 3724  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:11:35.0584 3724  USBSTOR - ok
20:11:35.0604 3724  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
20:11:35.0605 3724  usbuhci - ok
20:11:35.0618 3724  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
20:11:35.0621 3724  UxSms - ok
20:11:35.0630 3724  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
20:11:35.0631 3724  VaultSvc - ok
20:11:35.0642 3724  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
20:11:35.0643 3724  vdrvroot - ok
20:11:35.0681 3724  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
20:11:35.0689 3724  vds - ok
20:11:35.0711 3724  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
20:11:35.0712 3724  vga - ok
20:11:35.0724 3724  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
20:11:35.0725 3724  VgaSave - ok
20:11:35.0740 3724  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
20:11:35.0742 3724  vhdmp - ok
20:11:35.0756 3724  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
20:11:35.0757 3724  viaide - ok
20:11:35.0761 3724  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
20:11:35.0762 3724  volmgr - ok
20:11:35.0800 3724  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
20:11:35.0803 3724  volmgrx - ok
20:11:35.0822 3724  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
20:11:35.0824 3724  volsnap - ok
20:11:35.0851 3724  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
20:11:35.0853 3724  vsmraid - ok
20:11:35.0894 3724  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
20:11:35.0904 3724  VSS - ok
20:11:35.0918 3724  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
20:11:35.0919 3724  vwifibus - ok
20:11:35.0928 3724  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
20:11:35.0933 3724  W32Time - ok
20:11:35.0956 3724  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
20:11:35.0956 3724  WacomPen - ok
20:11:35.0981 3724  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
20:11:35.0982 3724  WANARP - ok
20:11:35.0987 3724  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
20:11:35.0988 3724  Wanarpv6 - ok
20:11:36.0042 3724  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
20:11:36.0051 3724  WatAdminSvc - ok
20:11:36.0109 3724  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
20:11:36.0123 3724  wbengine - ok
20:11:36.0142 3724  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
20:11:36.0146 3724  WbioSrvc - ok
20:11:36.0156 3724  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
20:11:36.0160 3724  wcncsvc - ok
20:11:36.0171 3724  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:11:36.0174 3724  WcsPlugInService - ok
20:11:36.0195 3724  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
20:11:36.0195 3724  Wd - ok
20:11:36.0231 3724  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
20:11:36.0235 3724  Wdf01000 - ok
20:11:36.0247 3724  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
20:11:36.0250 3724  WdiServiceHost - ok
20:11:36.0253 3724  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
20:11:36.0256 3724  WdiSystemHost - ok
20:11:36.0291 3724  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
20:11:36.0295 3724  WebClient - ok
20:11:36.0306 3724  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
20:11:36.0310 3724  Wecsvc - ok
20:11:36.0318 3724  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
20:11:36.0321 3724  wercplsupport - ok
20:11:36.0339 3724  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
20:11:36.0342 3724  WerSvc - ok
20:11:36.0362 3724  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
20:11:36.0363 3724  WfpLwf - ok
20:11:36.0374 3724  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
20:11:36.0375 3724  WIMMount - ok
20:11:36.0377 3724  WinHttpAutoProxySvc - ok
20:11:36.0416 3724  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
20:11:36.0416 3724  Winmgmt - ok
20:11:36.0450 3724  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
20:11:36.0460 3724  WinRM - ok
20:11:36.0533 3724  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
20:11:36.0534 3724  WinUsb - ok
20:11:36.0562 3724  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
20:11:36.0572 3724  Wlansvc - ok
20:11:36.0700 3724  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:11:36.0714 3724  wlidsvc - ok
20:11:36.0735 3724  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
20:11:36.0735 3724  WmiAcpi - ok
20:11:36.0757 3724  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
20:11:36.0760 3724  wmiApSrv - ok
20:11:36.0780 3724  WMPNetworkSvc - ok
20:11:36.0784 3724  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
20:11:36.0789 3724  WPCSvc - ok
20:11:36.0801 3724  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
20:11:36.0807 3724  WPDBusEnum - ok
20:11:36.0811 3724  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
20:11:36.0812 3724  ws2ifsl - ok
20:11:36.0816 3724  WSearch - ok
20:11:36.0888 3724  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
20:11:36.0907 3724  wuauserv - ok
20:11:36.0939 3724  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
20:11:36.0940 3724  WudfPf - ok
20:11:36.0976 3724  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
20:11:36.0979 3724  WUDFRd - ok
20:11:36.0998 3724  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
20:11:37.0002 3724  wudfsvc - ok
20:11:37.0031 3724  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
20:11:37.0037 3724  WwanSvc - ok
20:11:37.0086 3724  [ 754C8BF43F0DD4B54865F174A62761E9 ] XENfiltv        C:\Windows\system32\drivers\XENfiltv.sys
20:11:37.0088 3724  XENfiltv - ok
20:11:37.0125 3724  [ 2C6BC21B2D5B58D8B1D638C1704CB494 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
20:11:37.0125 3724  xusb21 - ok
20:11:37.0142 3724  ================ Scan global ===============================
20:11:37.0162 3724  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:11:37.0198 3724  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:11:37.0208 3724  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:11:37.0233 3724  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:11:37.0244 3724  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:11:37.0250 3724  [Global] - ok
20:11:37.0250 3724  ================ Scan MBR ==================================
20:11:37.0265 3724  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:11:37.0526 3724  \Device\Harddisk0\DR0 - ok
20:11:37.0527 3724  ================ Scan VBR ==================================
20:11:37.0529 3724  [ 70B0D2D9F2A7AE418D1957A85C6FD967 ] \Device\Harddisk0\DR0\Partition1
20:11:37.0532 3724  \Device\Harddisk0\DR0\Partition1 - ok
20:11:37.0559 3724  [ 09249CF6F528DC0E17B334264CEBA068 ] \Device\Harddisk0\DR0\Partition2
20:11:37.0562 3724  \Device\Harddisk0\DR0\Partition2 - ok
20:11:37.0562 3724  ============================================================
20:11:37.0562 3724  Scan finished
20:11:37.0562 3724  ============================================================
20:11:37.0571 2248  Detected object count: 0
20:11:37.0571 2248  Actual detected object count: 0

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 



#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 30 June 2013 - 09:05 AM

Can you please run the Eset online scan in safemode with networking and see how that goes as well as the scan below. 

 

Open the EmsisoftEmergencyKit
http://www.emsisoft.com/en/software/eek/download/
folder and double-click Start.exe.
A new window will open. Under "Run Directly:" click Emergency Kit Scanner.
When asked to run an online update, click Yes.
When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
Select the Deep Scan option and click the SCAN button.
When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
Copy/paste the report contents in your next reply



#7 dagr

dagr
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 30 June 2013 - 04:21 PM

I ran the ESET scan again and it found 1 threat called, a variant of Java/Exploit.Blacole.AN trojan, but again I'm having no luck copying and pasting a report or log.

 

Emsisoft Emergency Kit - Version 3.0
Last update: 6/30/2013 1:49:39 PM

Scan settings:

Scan type: Deep Scan
Objects: Rootkits, Memory, Traces, C:\

Detect Riskware: Off
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start:    6/30/2013 1:52:08 PM

C:\Program Files (x86)\GameSpy Arcade     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\AddIns     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\cstrike     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\cstrike\frontline     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\action     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\cstrike     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\firearms     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\frontline     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\gearbox     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\tfc     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\aq2     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\battle     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\chaosdm     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\duel     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\freeze     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\gloom     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\gxmod     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\holywars     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\jail     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\kots     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\lfiredm     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\lithium2     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\LMCTF     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\pball     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\q2comp     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\QPong     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\ra2     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\requiem     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\sconfig     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\tourney     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\wf     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\wod     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\alliance     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\beryllium     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\excessive     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\instagib     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\jailbreak     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\matchmod     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\osp     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\q3comp     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\q3f     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\q3ut2     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\requiem     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\rocketarena3     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\wfa     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\Arena     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\ch     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\CTF     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\CTFb     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\CTFplus     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\DD     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\DM     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\Duel     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\Fr     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\MT     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\Open Cal     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\RPG     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\TAC     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\ut     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\ut\Excessive     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\ut\RocketArena     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\ut\Swat     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Images     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Images\icons     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Images\portraits     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Profiles     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Profiles\(default)     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_common     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_demospy     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_fplanet     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_gnews     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_gspyder     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_news     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_support     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Skins     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Skins\(default3)     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Sounds     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Sounds\(default)     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Sounds\classic     detected: Trace.File.GameSpy Arcade (A)
C:\Users\Dagr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade     detected: Trace.File.GameSpy Arcade (A)
C:\Users\Dagr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GameSpy Arcade.lnk     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\4dca9208.dat     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Aphex.exe     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\ArcRes.dll     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\dat.bmp     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_banner.gif     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_banner.html     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_bannerbg.jpg     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_loading.gif     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_logo.jpg     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_news.html     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\fpupdate.exe     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade - Debug.lnk     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade Help.url     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade Website.url     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade.lnk     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy.com Gaming's Homepage.url     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GSAPak.exe     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\gslan.dll     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\gsws.dll     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\INSTALL.LOG     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\pw32.dll     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\readme.html     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Register GameSpy Arcade.url     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\RptCrash.exe     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_news\rsrc.dir     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_news\service_tab.psd     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_news\service_tab+.tga     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_support\rsrc.dir     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_support\service_tab.psd     detected: Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\ws_default.html     detected: Trace.File.GameSpy Arcade (A)
Value: HKEY_USERS\S-1-5-21-4117553487-1767824652-712851630-1000\SOFTWARE\GAMESPY\GAMESPY ARCADE -> INSTDIR     detected: Trace.Registry.GameSpy Arcade (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\GAMESPY\GAMESPY ARCADE -> INSTDIR     detected: Trace.Registry.GameSpy Arcade (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\GAMESPY ARCADE -> DISPLAYNAME     detected: Trace.Registry.GameSpy Arcade (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\GAMESPY ARCADE -> UNINSTALLSTRING     detected: Trace.Registry.GameSpy Arcade (A)

Scanned    1312390
Found    121

Scan end:    6/30/2013 5:14:49 PM
Scan time:    3:22:41

Value: HKEY_USERS\S-1-5-21-4117553487-1767824652-712851630-1000\SOFTWARE\GAMESPY\GAMESPY ARCADE -> INSTDIR    Quarantined Trace.Registry.GameSpy Arcade (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\GAMESPY\GAMESPY ARCADE -> INSTDIR    Quarantined Trace.Registry.GameSpy Arcade (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\GAMESPY ARCADE -> DISPLAYNAME    Quarantined Trace.Registry.GameSpy Arcade (A)
Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\GAMESPY ARCADE -> UNINSTALLSTRING    Quarantined Trace.Registry.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\AddIns    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\cstrike    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\cstrike\frontline    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\action    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\cstrike    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\firearms    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\frontline    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\gearbox    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\halflife\tfc    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\aq2    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\battle    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\chaosdm    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\duel    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\freeze    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\gloom    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\gxmod    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\holywars    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\jail    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\kots    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\lfiredm    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\lithium2    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\LMCTF    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\pball    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\q2comp    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\QPong    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\ra2    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\requiem    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\sconfig    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\tourney    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\wf    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake2\wod    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\alliance    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\beryllium    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\excessive    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\instagib    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\jailbreak    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\matchmod    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\osp    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\q3comp    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\q3f    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\q3ut2    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\requiem    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\rocketarena3    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\quake3\wfa    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\Arena    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\ch    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\CTF    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\CTFb    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\CTFplus    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\DD    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\DM    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\Duel    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Custom\tribes\Fr    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\4dca9208.dat    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Aphex.exe    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\ArcRes.dll    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\dat.bmp    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_banner.gif    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_banner.html    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_bannerbg.jpg    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_loading.gif    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_logo.jpg    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\def_news.html    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\fpupdate.exe    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade - Debug.lnk    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade Help.url    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade Website.url    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy Arcade.lnk    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GameSpy.com Gaming's Homepage.url    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\GSAPak.exe    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\gslan.dll    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\gsws.dll    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\INSTALL.LOG    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\pw32.dll    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\readme.html    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Register GameSpy Arcade.url    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\RptCrash.exe    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_news\rsrc.dir    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_news\service_tab.psd    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_news\service_tab+.tga    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_support\rsrc.dir    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\Services\_support\service_tab.psd    Quarantined Trace.File.GameSpy Arcade (A)
C:\Program Files (x86)\GameSpy Arcade\ws_default.html    Quarantined Trace.File.GameSpy Arcade (A)

Quarantined    93
 



#8 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 01 July 2013 - 05:31 AM

Can you tell me how the machine is running now please.



#9 dagr

dagr
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 01 July 2013 - 07:26 AM

It is the same as before, rogue anti-virus pop-ups, and the occasional redirect when browsing the net :(



#10 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 01 July 2013 - 07:47 AM

You will need elevated help from the Malware Experts.

 

 Please follow the instructions in ==>This Guide<== starting at Step 6.  If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<==  Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.



#11 dagr

dagr
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 01 July 2013 - 09:52 AM

I do appreciate all your help. As I was reviewing the guide for the next steps to take, I discovered that my windows fire wall is disabled and when I try to enable it I get this message, "Windows Firewall can't change some of your settings Error code 0x80070424". I have been using the free version of Avast, which has no firewall, and windows firewall (I thought). I sure don't remember turning my windows firewall off. I disabled Avast but still could not enable windows firewall, what a mess. Thanks again :unsure:



#12 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 PM

Posted 01 July 2013 - 10:02 AM

You can run this tool to restore the firewall but if you are still infected it may not do any good.

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

 

 

As well malwarebytes ant rootkit has a service repair tool.

http://www.malwarebytes.org/products/mbar/

 

 

Good luck with your issue.



#13 dagr

dagr
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 01 July 2013 - 10:16 AM

Thanks, I'll give them a try :)



#14 dagr

dagr
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:30 PM

Posted 01 July 2013 - 11:36 AM

Thanks again, firewall restored, on to the next step :)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users