Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware/Virus and Computer help needed!


  • Please log in to reply
12 replies to this topic

#1 TheEvilWithin

TheEvilWithin

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 03 August 2013 - 10:18 PM

Hello, my name is Aaron. I believe my pc may be seriously infected, very unprotected and that it may have had some potentially irreparable damage done to it. It started just yesterday, I plugged in an old usb drive to try and transfer some data from my PC to my PlayStation, when it asked to run an adobe update. I did so and afterwards I was plagued by ads on every website in very abnormal places, new icons showed up for My PC backup and other things, and new windows were constantly opening on my dash for ads. In a panic I ended up finding Malwarebytes, which didn't help.

So I began searching harder, in my search, I found combofix on this website and ran it without a second thought., I then read on and saw that it could do serious damage. I don't believe the program ever finished because it became froze and in my stress I stopped it. Then I found another article on your site and ended up downloading and running adwcleaner. It stopped the ads, but now every time I log in, I receive a setdefault.exe application error, and my avira antivirus will longer let me use it's toolbar. I'm sorry for my poor grammar and lack of knowledge. I'm not tech savvy at all when it comes to computers, and I'm very tired.  Some one please help me. :(



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 03 August 2013 - 10:24 PM

Welcome, Let's first run these and see where we are . Do not connect that USB to any other Computers yet.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 03 August 2013 - 10:38 PM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Carolyn (administrator) on 03-08-2013 at 23:34:07
Running from "C:\Users\Carolyn\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Realtek RTL8188CE 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Carolyn-HP
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : AC-16-2D-5E-4D-C2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek RTL8188CE 802.11b/g/n WiFi Adapter
   Physical Address. . . . . . . . . : 44-6D-57-33-31-95
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::9112:d02e:d86e:fca%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.73(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, August 03, 2013 11:25:30 PM
   Lease Expires . . . . . . . . . . : Sunday, August 04, 2013 11:25:31 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 239365463
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-1E-14-D0-44-6D-57-33-31-95
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{DD7B50E6-1229-4E03-8A46-10A739719B81}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 12:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:83f:a00:30e1:a111(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::83f:a00:30e1:a111%13(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 13:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 14:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  Cisco.Home
Address:  192.168.1.254
 
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Addresses:  173.194.37.134
 173.194.37.135
 173.194.37.136
 173.194.37.137
 173.194.37.142
 173.194.37.128
 173.194.37.129
 173.194.37.130
 173.194.37.131
 173.194.37.132
 173.194.37.133
 
 
Pinging google.com [173.194.37.134] with 32 bytes of data:
Reply from 173.194.37.134: bytes=32 time=29ms TTL=57
Reply from 173.194.37.134: bytes=32 time=28ms TTL=57
 
Ping statistics for 173.194.37.134:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 28ms, Maximum = 29ms, Average = 28ms
Server:  Cisco.Home
Address:  192.168.1.254
 
DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=116ms TTL=53
Reply from 206.190.36.45: bytes=32 time=120ms TTL=53
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 116ms, Maximum = 120ms, Average = 118ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=7ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 2ms, Maximum = 7ms, Average = 4ms
===========================================================================
Interface List
 12...ac 16 2d 5e 4d c2 ......Realtek PCIe FE Family Controller
 11...44 6d 57 33 31 95 ......Realtek RTL8188CE 802.11b/g/n WiFi Adapter
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.73     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.73    281
     192.168.1.73  255.255.255.255         On-link      192.168.1.73    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.73    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.73    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.73    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:6ab8:83f:a00:30e1:a111/128
                                    On-link
 11    281 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::83f:a00:30e1:a111/128
                                    On-link
 11    281 fe80::9112:d02e:d86e:fca/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 02 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 03 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 04 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 05 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 06 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 07 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 08 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 02 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 03 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 04 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 05 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 06 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 07 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 08 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 16 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 17 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 18 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 19 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/03/2013 11:26:56 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 08:43:19 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 07:11:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 07:06:18 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:52:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:41:02 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:38:00 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:35:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:31:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:15:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (08/03/2013 11:27:41 PM) (Source: DCOM) (User: )
Description: {F5539356-2F02-40D4-999E-FA61F45FE12E}
 
Error: (08/03/2013 11:26:55 PM) (Source: DCOM) (User: )
Description: 1053WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (08/03/2013 11:26:55 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1053
 
Error: (08/03/2013 11:26:55 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
 
Error: (08/03/2013 11:25:32 PM) (Source: Service Control Manager) (User: )
Description: The Avira Upgrade Service service failed to start due to the following error: 
%%2
 
Error: (08/03/2013 11:25:28 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126
 
Error: (08/03/2013 08:42:53 PM) (Source: Service Control Manager) (User: )
Description: The Avira Upgrade Service service failed to start due to the following error: 
%%2
 
Error: (08/03/2013 08:42:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126
 
Error: (08/03/2013 07:10:50 PM) (Source: Service Control Manager) (User: )
Description: The Avira Upgrade Service service failed to start due to the following error: 
%%2
 
Error: (08/03/2013 07:10:46 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
Error Code: 126
 
 
Microsoft Office Sessions:
=========================
Error: (08/03/2013 11:26:56 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 08:43:19 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 07:11:25 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 07:06:18 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:52:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:41:02 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:38:00 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:35:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:31:50 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/03/2013 06:15:39 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-08-03 02:15:48.725
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:48.631
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:45.358
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:45.276
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:11.268
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:11.180
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:06.515
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:06.427
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:03.800
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-08-03 02:15:03.723
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Reader X (10.1.7) MUI (Version: 10.1.7)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
AVG 2013 (Version: 13.0.3209)
Avira Free Antivirus (Version: 13.0.0.3884)
Bejeweled 3 (Version: 2.2.0.97)
Bing Bar (Version: 7.0.610.0)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.97)
Blio (Version: 2.2.6699)
Blue Coat K9 Web Protection (Version: 4.4.268)
Bounce Symphony (Version: 2.2.0.97)
Cake Mania (Version: 2.2.0.95)
Chronicles of Albian (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compaq Setup Manager (Version: 1.1.13476.3753)
Cradle of Rome 2 (Version: 2.2.0.95)
CyberLink YouCam (Version: 3.5.1.4119)
D3DX10 (Version: 15.4.2368.0902)
ESU for Microsoft Windows 7 SP1 (Version: 2.1.1)
Evernote v. 4.2.3 (Version: 4.2.3.22)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.97)
Gamers Unite! Snag Bar
Google Chrome (Version: 28.0.1500.95)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.2.5)
HP Launch Box (Version: 1.1.5)
HP MovieStore (Version: 1.0.057)
HP MovieStore (Version: 2.0)
HP On Screen Display (Version: 1.3.5)
HP Power Manager (Version: 1.4.8)
HP Quick Launch (Version: 2.7.2)
HP QuickWeb (Version: 3.1.0.9742)
HP Setup (Version: 8.7.4751.3798)
HP Software Framework (Version: 4.1.13.1)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2353)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
Internet Explorer (Enable DEP)
Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Learning Lodge Navigator
LessTabs (Version: 1.7.2.0)
Mah Jong Medley (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
McAfee Security Scan Plus (Version: 3.0.318.3)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5131.5000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Motorola Mobile Drivers Installation 4.8.0 (Version: 4.8.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery of Mortlake Mansion (Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (Version: 2.2.0.95)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.95)
Realtek Ethernet Controller Driver (Version: 7.42.304.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6287)
Realtek PCIE Card Reader (Version: 6.1.7600.77)
REALTEK Wireless LAN Driver (Version: 1.00.11.0706)
Recovery Manager (Version: 2.0.0)
RoxioNow Player (Version: 1.9.5.103)
Screenshot It Enabler (Version: 1.02.0000)
Skype Click to Call (Version: 6.10.13089)
Skype™ 6.3 (Version: 6.3.107)
Slingo Supreme (Version: 2.2.0.97)
SUPERAntiSpyware (Version: 5.6.1020)
Synaptics TouchPad Driver (Version: 15.3.11.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update Installer for WildTangent Games App
Vacation Quest - The Hawaiian Islands (Version: 2.2.0.97)
Virtual Villagers 5 - New Believers (Version: 2.2.0.97)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VTech Download Agent Library (Version: 1.00.0000)
WildTangent Games App (Version: 4.0.9.6)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
WinRAR archiver
Yahoo! Software Update
Yahoo! Toolbar
ZTE Handset USB Driver
ZTE Handset USB Driver (Version: 5.2066.1.A10B02)
Zuma Deluxe (Version: 2.2.0.95)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 41%
Total physical RAM: 3947.86 MB
Available physical RAM: 2299.48 MB
Total Pagefile: 7893.9 MB
Available Pagefile: 5955.78 MB
Total Virtual: 4095.88 MB
Available Virtual: 3974.11 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:279.47 GB) (Free:225.02 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:14.46 GB) (Free:1.61 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.08 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\CAROLYN-HP
 
Administrator            Carolyn                  Guest                    
 
 
**** End of log ****


#4 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 03 August 2013 - 10:43 PM

23:39:47.0004 4452  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
23:39:47.0798 4452  ============================================================
23:39:47.0798 4452  Current date / time: 2013/08/03 23:39:47.0798
23:39:47.0798 4452  SystemInfo:
23:39:47.0798 4452  
23:39:47.0799 4452  OS Version: 6.1.7601 ServicePack: 1.0
23:39:47.0799 4452  Product type: Workstation
23:39:47.0799 4452  ComputerName: CAROLYN-HP
23:39:47.0799 4452  UserName: Carolyn
23:39:47.0799 4452  Windows directory: C:\Windows
23:39:47.0799 4452  System windows directory: C:\Windows
23:39:47.0799 4452  Running under WOW64
23:39:47.0799 4452  Processor architecture: Intel x64
23:39:47.0799 4452  Number of processors: 2
23:39:47.0799 4452  Page size: 0x1000
23:39:47.0799 4452  Boot type: Normal boot
23:39:47.0799 4452  ============================================================
23:39:48.0429 4452  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:39:48.0433 4452  ============================================================
23:39:48.0433 4452  \Device\Harddisk0\DR0:
23:39:48.0433 4452  MBR partitions:
23:39:48.0433 4452  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
23:39:48.0433 4452  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x22EF1000
23:39:48.0433 4452  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22F55000, BlocksNum 0x1CE9800
23:39:48.0433 4452  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x24C3E800, BlocksNum 0x7EFAB0
23:39:48.0433 4452  ============================================================
23:39:48.0467 4452  C: <-> \Device\Harddisk0\DR0\Partition2
23:39:48.0520 4452  D: <-> \Device\Harddisk0\DR0\Partition3
23:39:48.0529 4452  E: <-> \Device\Harddisk0\DR0\Partition4
23:39:48.0529 4452  ============================================================
23:39:48.0529 4452  Initialize success
23:39:48.0530 4452  ============================================================
23:40:13.0576 1872  ============================================================
23:40:13.0576 1872  Scan started
23:40:13.0576 1872  Mode: Manual; TDLFS; 
23:40:13.0576 1872  ============================================================
23:40:14.0283 1872  ================ Scan system memory ========================
23:40:14.0283 1872  System memory - ok
23:40:14.0283 1872  ================ Scan services =============================
23:40:14.0434 1872  [ ABDCD326E1DD1C62509ED94C278A7453 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
23:40:14.0437 1872  !SASCORE - ok
23:40:14.0699 1872  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:40:14.0720 1872  1394ohci - ok
23:40:14.0760 1872  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:40:14.0768 1872  ACPI - ok
23:40:14.0817 1872  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:40:14.0826 1872  AcpiPmi - ok
23:40:14.0989 1872  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:40:14.0991 1872  AdobeARMservice - ok
23:40:15.0192 1872  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:40:15.0197 1872  AdobeFlashPlayerUpdateSvc - ok
23:40:15.0251 1872  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
23:40:15.0275 1872  adp94xx - ok
23:40:15.0330 1872  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
23:40:15.0350 1872  adpahci - ok
23:40:15.0374 1872  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
23:40:15.0384 1872  adpu320 - ok
23:40:15.0420 1872  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:40:15.0422 1872  AeLookupSvc - ok
23:40:15.0478 1872  [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
23:40:15.0481 1872  AERTFilters - ok
23:40:15.0525 1872  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
23:40:15.0535 1872  AFD - ok
23:40:15.0568 1872  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
23:40:15.0581 1872  agp440 - ok
23:40:15.0614 1872  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
23:40:15.0616 1872  ALG - ok
23:40:15.0667 1872  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:40:15.0675 1872  aliide - ok
23:40:15.0693 1872  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
23:40:15.0702 1872  amdide - ok
23:40:15.0737 1872  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
23:40:15.0750 1872  AmdK8 - ok
23:40:15.0762 1872  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
23:40:15.0776 1872  AmdPPM - ok
23:40:15.0808 1872  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:40:15.0816 1872  amdsata - ok
23:40:15.0858 1872  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
23:40:15.0870 1872  amdsbs - ok
23:40:15.0900 1872  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:40:15.0907 1872  amdxata - ok
23:40:15.0964 1872  [ FAD35699987BAA96E22E13B24FF44769 ] androidusb      C:\Windows\system32\Drivers\androidusb.sys
23:40:15.0977 1872  androidusb - ok
23:40:16.0132 1872  [ 2E2B1A491CB78C7D8C8A265C004B1F79 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
23:40:16.0134 1872  AntiVirSchedulerService - ok
23:40:16.0173 1872  [ AAE3238C2A0B2CF17851B3D06C8EA8C0 ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
23:40:16.0175 1872  AntiVirService - ok
23:40:16.0222 1872  [ 35AEA74A23D2441ED9068D0D967E2ED2 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
23:40:16.0230 1872  AntiVirWebService - ok
23:40:16.0274 1872  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
23:40:16.0284 1872  AppID - ok
23:40:16.0312 1872  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:40:16.0324 1872  AppIDSvc - ok
23:40:16.0377 1872  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
23:40:16.0379 1872  Appinfo - ok
23:40:16.0420 1872  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
23:40:16.0434 1872  arc - ok
23:40:16.0457 1872  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
23:40:16.0471 1872  arcsas - ok
23:40:16.0494 1872  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:40:16.0502 1872  AsyncMac - ok
23:40:16.0546 1872  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
23:40:16.0556 1872  atapi - ok
23:40:16.0617 1872  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:40:16.0623 1872  AudioEndpointBuilder - ok
23:40:16.0635 1872  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:40:16.0641 1872  AudioSrv - ok
23:40:16.0677 1872  [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
23:40:16.0678 1872  avgntflt - ok
23:40:16.0734 1872  [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
23:40:16.0736 1872  avipbb - ok
23:40:16.0795 1872  AviraUpgradeService - ok
23:40:16.0830 1872  [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
23:40:16.0832 1872  avkmgr - ok
23:40:16.0877 1872  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:40:16.0888 1872  AxInstSV - ok
23:40:16.0934 1872  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
23:40:16.0952 1872  b06bdrv - ok
23:40:16.0990 1872  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:40:17.0003 1872  b57nd60a - ok
23:40:17.0069 1872  [ 93EE7D9C35AE7E9FFDA148D7805F1421 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
23:40:17.0073 1872  BBSvc - ok
23:40:17.0141 1872  [ 34E4F7B36333123998F65083FA1E4A68 ] bckd            C:\Windows\system32\drivers\bckd.sys
23:40:17.0156 1872  bckd - ok
23:40:17.0288 1872  [ 950E6EA686AEA8BC970132B9DD2093DE ] bckwfs          C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
23:40:17.0312 1872  bckwfs - ok
23:40:17.0359 1872  [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
23:40:17.0385 1872  BCM43XX - ok
23:40:17.0411 1872  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:40:17.0419 1872  BDESVC - ok
23:40:17.0448 1872  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:40:17.0452 1872  Beep - ok
23:40:17.0509 1872  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
23:40:17.0521 1872  BFE - ok
23:40:17.0570 1872  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
23:40:17.0582 1872  BITS - ok
23:40:17.0631 1872  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
23:40:17.0638 1872  blbdrive - ok
23:40:17.0665 1872  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:40:17.0675 1872  bowser - ok
23:40:17.0710 1872  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
23:40:17.0715 1872  BrFiltLo - ok
23:40:17.0731 1872  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
23:40:17.0736 1872  BrFiltUp - ok
23:40:17.0760 1872  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
23:40:17.0770 1872  BridgeMP - ok
23:40:17.0814 1872  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
23:40:17.0827 1872  Browser - ok
23:40:17.0856 1872  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:40:17.0874 1872  Brserid - ok
23:40:17.0911 1872  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:40:17.0923 1872  BrSerWdm - ok
23:40:17.0946 1872  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:40:17.0953 1872  BrUsbMdm - ok
23:40:17.0981 1872  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:40:17.0985 1872  BrUsbSer - ok
23:40:18.0028 1872  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
23:40:18.0035 1872  BTHMODEM - ok
23:40:18.0062 1872  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
23:40:18.0071 1872  bthserv - ok
23:40:18.0127 1872  [ 9887CA12F407D7FBC7F48F3678F5F0B6 ] BVRPMPR5a64     C:\Windows\system32\drivers\BVRPMPR5a64.SYS
23:40:18.0138 1872  BVRPMPR5a64 - ok
23:40:18.0189 1872  catchme - ok
23:40:18.0223 1872  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:40:18.0235 1872  cdfs - ok
23:40:18.0274 1872  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:40:18.0290 1872  cdrom - ok
23:40:18.0315 1872  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
23:40:18.0318 1872  CertPropSvc - ok
23:40:18.0358 1872  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
23:40:18.0366 1872  circlass - ok
23:40:18.0404 1872  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
23:40:18.0409 1872  CLFS - ok
23:40:18.0462 1872  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:40:18.0465 1872  clr_optimization_v2.0.50727_32 - ok
23:40:18.0524 1872  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:40:18.0526 1872  clr_optimization_v2.0.50727_64 - ok
23:40:18.0614 1872  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:40:18.0618 1872  clr_optimization_v4.0.30319_32 - ok
23:40:18.0663 1872  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:40:18.0667 1872  clr_optimization_v4.0.30319_64 - ok
23:40:18.0706 1872  [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
23:40:18.0712 1872  clwvd - ok
23:40:18.0750 1872  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
23:40:18.0757 1872  CmBatt - ok
23:40:18.0776 1872  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:40:18.0785 1872  cmdide - ok
23:40:18.0833 1872  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
23:40:18.0860 1872  CNG - ok
23:40:18.0901 1872  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
23:40:18.0907 1872  Compbatt - ok
23:40:18.0918 1872  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:40:18.0925 1872  CompositeBus - ok
23:40:18.0936 1872  COMSysApp - ok
23:40:18.0949 1872  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
23:40:18.0956 1872  crcdisk - ok
23:40:19.0004 1872  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:40:19.0007 1872  CryptSvc - ok
23:40:19.0111 1872  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
23:40:19.0124 1872  cvhsvc - ok
23:40:19.0173 1872  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:40:19.0184 1872  DcomLaunch - ok
23:40:19.0230 1872  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
23:40:19.0237 1872  defragsvc - ok
23:40:19.0266 1872  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:40:19.0278 1872  DfsC - ok
23:40:19.0315 1872  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:40:19.0321 1872  Dhcp - ok
23:40:19.0342 1872  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
23:40:19.0343 1872  discache - ok
23:40:19.0388 1872  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
23:40:19.0402 1872  Disk - ok
23:40:19.0432 1872  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:40:19.0436 1872  Dnscache - ok
23:40:19.0470 1872  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:40:19.0483 1872  dot3svc - ok
23:40:19.0506 1872  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
23:40:19.0508 1872  DPS - ok
23:40:19.0547 1872  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:40:19.0550 1872  drmkaud - ok
23:40:19.0594 1872  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:40:19.0616 1872  DXGKrnl - ok
23:40:19.0653 1872  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
23:40:19.0656 1872  EapHost - ok
23:40:19.0756 1872  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
23:40:19.0814 1872  ebdrv - ok
23:40:19.0848 1872  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
23:40:19.0850 1872  EFS - ok
23:40:19.0971 1872  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:40:19.0983 1872  ehRecvr - ok
23:40:20.0006 1872  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
23:40:20.0009 1872  ehSched - ok
23:40:20.0042 1872  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
23:40:20.0057 1872  elxstor - ok
23:40:20.0066 1872  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:40:20.0071 1872  ErrDev - ok
23:40:20.0117 1872  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
23:40:20.0121 1872  EventSystem - ok
23:40:20.0147 1872  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
23:40:20.0156 1872  exfat - ok
23:40:20.0171 1872  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:40:20.0180 1872  fastfat - ok
23:40:20.0221 1872  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
23:40:20.0230 1872  Fax - ok
23:40:20.0270 1872  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
23:40:20.0276 1872  fdc - ok
23:40:20.0296 1872  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
23:40:20.0297 1872  fdPHost - ok
23:40:20.0305 1872  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:40:20.0306 1872  FDResPub - ok
23:40:20.0319 1872  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:40:20.0327 1872  FileInfo - ok
23:40:20.0338 1872  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:40:20.0344 1872  Filetrace - ok
23:40:20.0378 1872  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
23:40:20.0383 1872  flpydisk - ok
23:40:20.0409 1872  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:40:20.0413 1872  FltMgr - ok
23:40:20.0481 1872  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
23:40:20.0500 1872  FontCache - ok
23:40:20.0550 1872  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:40:20.0552 1872  FontCache3.0.0.0 - ok
23:40:20.0570 1872  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:40:20.0582 1872  FsDepends - ok
23:40:20.0604 1872  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:40:20.0614 1872  Fs_Rec - ok
23:40:20.0662 1872  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:40:20.0667 1872  fvevol - ok
23:40:20.0693 1872  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
23:40:20.0705 1872  gagp30kx - ok
23:40:20.0788 1872  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
23:40:20.0792 1872  GamesAppService - ok
23:40:20.0846 1872  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
23:40:20.0859 1872  gpsvc - ok
23:40:20.0899 1872  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:40:20.0906 1872  hcw85cir - ok
23:40:20.0937 1872  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:40:20.0953 1872  HdAudAddService - ok
23:40:20.0980 1872  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:40:20.0982 1872  HDAudBus - ok
23:40:21.0009 1872  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
23:40:21.0014 1872  HidBatt - ok
23:40:21.0028 1872  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
23:40:21.0035 1872  HidBth - ok
23:40:21.0053 1872  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
23:40:21.0059 1872  HidIr - ok
23:40:21.0083 1872  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
23:40:21.0090 1872  hidserv - ok
23:40:21.0119 1872  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
23:40:21.0125 1872  HidUsb - ok
23:40:21.0147 1872  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:40:21.0149 1872  hkmsvc - ok
23:40:21.0165 1872  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:40:21.0168 1872  HomeGroupListener - ok
23:40:21.0204 1872  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:40:21.0216 1872  HomeGroupProvider - ok
23:40:21.0269 1872  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
23:40:21.0274 1872  HPClientSvc - ok
23:40:21.0352 1872  [ B19FF523B533A3F198B9239E1749C940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
23:40:21.0357 1872  HPDrvMntSvc.exe - ok
23:40:21.0430 1872  [ 01091B900E15878B4434F9C726C4541D ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
23:40:21.0446 1872  hpqwmiex - ok
23:40:21.0493 1872  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:40:21.0501 1872  HpSAMD - ok
23:40:21.0564 1872  [ 2BEC76BDCD1BC080210325E7B5094834 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
23:40:21.0565 1872  HPWMISVC - ok
23:40:21.0609 1872  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:40:21.0624 1872  HTTP - ok
23:40:21.0644 1872  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:40:21.0645 1872  hwpolicy - ok
23:40:21.0684 1872  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
23:40:21.0693 1872  i8042prt - ok
23:40:21.0735 1872  [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
23:40:21.0739 1872  iaStor - ok
23:40:21.0820 1872  [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
23:40:21.0822 1872  IAStorDataMgrSvc - ok
23:40:21.0867 1872  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:40:21.0888 1872  iaStorV - ok
23:40:22.0038 1872  [ E4693409D06785477A49FB34AFAE1B92 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
23:40:22.0892 1872  IconMan_R - ok
23:40:22.0941 1872  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:40:22.0948 1872  idsvc - ok
23:40:23.0227 1872  [ 370C2A8629B30F910F740387795DDC6F ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
23:40:23.0528 1872  igfx - ok
23:40:23.0568 1872  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
23:40:23.0574 1872  iirsp - ok
23:40:23.0613 1872  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
23:40:23.0622 1872  IKEEXT - ok
23:40:23.0720 1872  [ 336C3A6BF14D5A9AF35AF07C6B6B29CD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:40:23.0772 1872  IntcAzAudAddService - ok
23:40:23.0801 1872  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
23:40:23.0806 1872  intelide - ok
23:40:23.0839 1872  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:40:23.0841 1872  intelppm - ok
23:40:23.0875 1872  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:40:23.0888 1872  IPBusEnum - ok
23:40:23.0923 1872  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:40:23.0930 1872  IpFilterDriver - ok
23:40:23.0982 1872  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:40:23.0993 1872  iphlpsvc - ok
23:40:24.0022 1872  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:40:24.0031 1872  IPMIDRV - ok
23:40:24.0049 1872  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:40:24.0057 1872  IPNAT - ok
23:40:24.0093 1872  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:40:24.0097 1872  IRENUM - ok
23:40:24.0110 1872  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:40:24.0117 1872  isapnp - ok
23:40:24.0134 1872  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:40:24.0197 1872  iScsiPrt - ok
23:40:24.0240 1872  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
23:40:24.0252 1872  kbdclass - ok
23:40:24.0283 1872  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
23:40:24.0292 1872  kbdhid - ok
23:40:24.0315 1872  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
23:40:24.0318 1872  KeyIso - ok
23:40:24.0340 1872  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:40:24.0358 1872  KSecDD - ok
23:40:24.0391 1872  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:40:24.0403 1872  KSecPkg - ok
23:40:24.0440 1872  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:40:24.0445 1872  ksthunk - ok
23:40:24.0474 1872  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:40:24.0493 1872  KtmRm - ok
23:40:24.0521 1872  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
23:40:24.0526 1872  LanmanServer - ok
23:40:24.0546 1872  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:40:24.0550 1872  LanmanWorkstation - ok
23:40:24.0595 1872  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:40:24.0601 1872  lltdio - ok
23:40:24.0623 1872  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:40:24.0637 1872  lltdsvc - ok
23:40:24.0659 1872  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:40:24.0661 1872  lmhosts - ok
23:40:24.0715 1872  [ D7E0BED3EA21D7BDDD410ADE51708D90 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:40:24.0719 1872  LMS - ok
23:40:24.0759 1872  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
23:40:24.0768 1872  LSI_FC - ok
23:40:24.0798 1872  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
23:40:24.0806 1872  LSI_SAS - ok
23:40:24.0840 1872  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
23:40:24.0853 1872  LSI_SAS2 - ok
23:40:24.0884 1872  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
23:40:24.0892 1872  LSI_SCSI - ok
23:40:24.0921 1872  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
23:40:24.0929 1872  luafv - ok
23:40:24.0981 1872  [ 9B4B4838A6C8DC97416581C13CB6482C ] massfilter_hs   C:\Windows\system32\drivers\massfilter_hs.sys
23:40:24.0990 1872  massfilter_hs - ok
23:40:25.0022 1872  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
23:40:25.0028 1872  MBAMProtector - ok
23:40:25.0113 1872  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
23:40:25.0120 1872  MBAMScheduler - ok
23:40:25.0153 1872  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
23:40:25.0159 1872  MBAMService - ok
23:40:25.0233 1872  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
23:40:25.0238 1872  McComponentHostService - ok
23:40:25.0268 1872  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:40:25.0277 1872  Mcx2Svc - ok
23:40:25.0307 1872  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
23:40:25.0313 1872  megasas - ok
23:40:25.0340 1872  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
23:40:25.0352 1872  MegaSR - ok
23:40:25.0379 1872  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
23:40:25.0380 1872  MEIx64 - ok
23:40:25.0410 1872  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
23:40:25.0412 1872  MMCSS - ok
23:40:25.0430 1872  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
23:40:25.0436 1872  Modem - ok
23:40:25.0456 1872  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:40:25.0457 1872  monitor - ok
23:40:25.0483 1872  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:40:25.0491 1872  mouclass - ok
23:40:25.0519 1872  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
23:40:25.0524 1872  mouhid - ok
23:40:25.0542 1872  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:40:25.0544 1872  mountmgr - ok
23:40:25.0560 1872  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:40:25.0572 1872  mpio - ok
23:40:25.0584 1872  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:40:25.0591 1872  mpsdrv - ok
23:40:25.0624 1872  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:40:25.0633 1872  MpsSvc - ok
23:40:25.0652 1872  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:40:25.0661 1872  MRxDAV - ok
23:40:25.0681 1872  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:40:25.0689 1872  mrxsmb - ok
23:40:25.0710 1872  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:40:25.0721 1872  mrxsmb10 - ok
23:40:25.0732 1872  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:40:25.0740 1872  mrxsmb20 - ok
23:40:25.0772 1872  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:40:25.0782 1872  msahci - ok
23:40:25.0819 1872  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:40:25.0835 1872  msdsm - ok
23:40:25.0853 1872  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
23:40:25.0858 1872  MSDTC - ok
23:40:25.0932 1872  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:40:25.0936 1872  Msfs - ok
23:40:25.0955 1872  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:40:25.0959 1872  mshidkmdf - ok
23:40:25.0978 1872  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:40:25.0984 1872  msisadrv - ok
23:40:26.0024 1872  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:40:26.0033 1872  MSiSCSI - ok
23:40:26.0037 1872  msiserver - ok
23:40:26.0069 1872  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:40:26.0073 1872  MSKSSRV - ok
23:40:26.0092 1872  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:40:26.0096 1872  MSPCLOCK - ok
23:40:26.0100 1872  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:40:26.0104 1872  MSPQM - ok
23:40:26.0124 1872  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:40:26.0136 1872  MsRPC - ok
23:40:26.0155 1872  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:40:26.0156 1872  mssmbios - ok
23:40:26.0187 1872  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:40:26.0190 1872  MSTEE - ok
23:40:26.0202 1872  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
23:40:26.0206 1872  MTConfig - ok
23:40:26.0236 1872  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
23:40:26.0243 1872  Mup - ok
23:40:26.0280 1872  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
23:40:26.0290 1872  napagent - ok
23:40:26.0323 1872  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:40:26.0338 1872  NativeWifiP - ok
23:40:26.0396 1872  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:40:26.0409 1872  NDIS - ok
23:40:26.0445 1872  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:40:26.0451 1872  NdisCap - ok
23:40:26.0481 1872  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:40:26.0486 1872  NdisTapi - ok
23:40:26.0497 1872  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:40:26.0504 1872  Ndisuio - ok
23:40:26.0522 1872  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:40:26.0533 1872  NdisWan - ok
23:40:26.0560 1872  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:40:26.0567 1872  NDProxy - ok
23:40:26.0597 1872  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:40:26.0603 1872  NetBIOS - ok
23:40:26.0626 1872  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:40:26.0630 1872  NetBT - ok
23:40:26.0637 1872  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
23:40:26.0639 1872  Netlogon - ok
23:40:26.0675 1872  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
23:40:26.0679 1872  Netman - ok
23:40:26.0704 1872  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
23:40:26.0709 1872  netprofm - ok
23:40:26.0732 1872  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:40:26.0734 1872  NetTcpPortSharing - ok
23:40:26.0770 1872  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
23:40:26.0777 1872  nfrd960 - ok
23:40:26.0817 1872  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:40:26.0821 1872  NlaSvc - ok
23:40:26.0850 1872  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:40:26.0856 1872  Npfs - ok
23:40:26.0879 1872  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
23:40:26.0882 1872  nsi - ok
23:40:26.0896 1872  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:40:26.0897 1872  nsiproxy - ok
23:40:26.0969 1872  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:40:27.0004 1872  Ntfs - ok
23:40:27.0029 1872  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
23:40:27.0032 1872  Null - ok
23:40:27.0067 1872  [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
23:40:27.0081 1872  NVENETFD - ok
23:40:27.0091 1872  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:40:27.0100 1872  nvraid - ok
23:40:27.0119 1872  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:40:27.0128 1872  nvstor - ok
23:40:27.0161 1872  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:40:27.0170 1872  nv_agp - ok
23:40:27.0186 1872  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:40:27.0194 1872  ohci1394 - ok
23:40:27.0267 1872  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:40:27.0269 1872  ose - ok
23:40:27.0472 1872  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:40:27.0511 1872  osppsvc - ok
23:40:27.0553 1872  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:40:27.0557 1872  p2pimsvc - ok
23:40:27.0579 1872  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
23:40:27.0584 1872  p2psvc - ok
23:40:27.0611 1872  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
23:40:27.0619 1872  Parport - ok
23:40:27.0638 1872  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:40:27.0646 1872  partmgr - ok
23:40:27.0670 1872  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:40:27.0673 1872  PcaSvc - ok
23:40:27.0701 1872  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
23:40:27.0712 1872  pci - ok
23:40:27.0734 1872  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
23:40:27.0739 1872  pciide - ok
23:40:27.0757 1872  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
23:40:27.0769 1872  pcmcia - ok
23:40:27.0777 1872  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:40:27.0784 1872  pcw - ok
23:40:27.0820 1872  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:40:27.0841 1872  PEAUTH - ok
23:40:27.0949 1872  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:40:27.0952 1872  PerfHost - ok
23:40:28.0026 1872  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
23:40:28.0058 1872  pla - ok
23:40:28.0102 1872  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:40:28.0108 1872  PlugPlay - ok
23:40:28.0118 1872  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:40:28.0126 1872  PNRPAutoReg - ok
23:40:28.0142 1872  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:40:28.0146 1872  PNRPsvc - ok
23:40:28.0174 1872  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:40:28.0180 1872  PolicyAgent - ok
23:40:28.0213 1872  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
23:40:28.0216 1872  Power - ok
23:40:28.0245 1872  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:40:28.0254 1872  PptpMiniport - ok
23:40:28.0282 1872  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
23:40:28.0289 1872  Processor - ok
23:40:28.0338 1872  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:40:28.0341 1872  ProfSvc - ok
23:40:28.0359 1872  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:40:28.0361 1872  ProtectedStorage - ok
23:40:28.0376 1872  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:40:28.0378 1872  Psched - ok
23:40:28.0428 1872  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
23:40:28.0458 1872  ql2300 - ok
23:40:28.0473 1872  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
23:40:28.0482 1872  ql40xx - ok
23:40:28.0508 1872  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
23:40:28.0522 1872  QWAVE - ok
23:40:28.0552 1872  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:40:28.0558 1872  QWAVEdrv - ok
23:40:28.0573 1872  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:40:28.0577 1872  RasAcd - ok
23:40:28.0606 1872  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:40:28.0613 1872  RasAgileVpn - ok
23:40:28.0647 1872  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
23:40:28.0655 1872  RasAuto - ok
23:40:28.0714 1872  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:40:28.0724 1872  Rasl2tp - ok
23:40:28.0741 1872  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
23:40:28.0746 1872  RasMan - ok
23:40:28.0762 1872  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:40:28.0771 1872  RasPppoe - ok
23:40:28.0793 1872  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:40:28.0800 1872  RasSstp - ok
23:40:28.0819 1872  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:40:28.0832 1872  rdbss - ok
23:40:28.0857 1872  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
23:40:28.0862 1872  rdpbus - ok
23:40:28.0873 1872  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:40:28.0874 1872  RDPCDD - ok
23:40:28.0904 1872  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:40:28.0905 1872  RDPENCDD - ok
23:40:28.0920 1872  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:40:28.0921 1872  RDPREFMP - ok
23:40:28.0984 1872  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:40:28.0989 1872  RdpVideoMiniport - ok
23:40:29.0017 1872  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:40:29.0027 1872  RDPWD - ok
23:40:29.0056 1872  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:40:29.0067 1872  rdyboost - ok
23:40:29.0087 1872  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:40:29.0096 1872  RemoteAccess - ok
23:40:29.0121 1872  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:40:29.0134 1872  RemoteRegistry - ok
23:40:29.0192 1872  [ 085D18C71AB2611A3D61528132B6501E ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
23:40:29.0199 1872  RoxioNow Service - ok
23:40:29.0237 1872  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:40:29.0240 1872  RpcEptMapper - ok
23:40:29.0278 1872  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
23:40:29.0280 1872  RpcLocator - ok
23:40:29.0305 1872  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
23:40:29.0314 1872  RpcSs - ok
23:40:29.0357 1872  [ 546D7F426776090B90EF5F195B6AE662 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
23:40:29.0362 1872  RSPCIESTOR - ok
23:40:29.0402 1872  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:40:29.0409 1872  rspndr - ok
23:40:29.0459 1872  [ 3372196F61AF48503656EF6AA3E92D1B ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
23:40:29.0478 1872  RTL8167 - ok
23:40:29.0529 1872  [ 508D997A5E9F400FADE6C85251BF13DF ] RTL8192Ce       C:\Windows\system32\DRIVERS\rtl8192Ce.sys
23:40:29.0563 1872  RTL8192Ce - ok
23:40:29.0582 1872  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
23:40:29.0584 1872  SamSs - ok
23:40:29.0643 1872  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
23:40:29.0649 1872  SASDIFSV - ok
23:40:29.0694 1872  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
23:40:29.0701 1872  SASKUTIL - ok
23:40:29.0729 1872  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:40:29.0743 1872  sbp2port - ok
23:40:29.0777 1872  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:40:29.0789 1872  SCardSvr - ok
23:40:29.0798 1872  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:40:29.0805 1872  scfilter - ok
23:40:29.0832 1872  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
23:40:29.0844 1872  Schedule - ok
23:40:29.0868 1872  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:40:29.0870 1872  SCPolicySvc - ok
23:40:29.0930 1872  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
23:40:29.0938 1872  sdbus - ok
23:40:29.0971 1872  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:40:29.0996 1872  SDRSVC - ok
23:40:30.0054 1872  [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort         C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
23:40:30.0059 1872  SeaPort - ok
23:40:30.0086 1872  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:40:30.0093 1872  secdrv - ok
23:40:30.0129 1872  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
23:40:30.0132 1872  seclogon - ok
23:40:30.0146 1872  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
23:40:30.0149 1872  SENS - ok
23:40:30.0201 1872  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:40:30.0208 1872  SensrSvc - ok
23:40:30.0237 1872  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
23:40:30.0242 1872  Serenum - ok
23:40:30.0267 1872  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
23:40:30.0275 1872  Serial - ok
23:40:30.0305 1872  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
23:40:30.0310 1872  sermouse - ok
23:40:30.0349 1872  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
23:40:30.0359 1872  SessionEnv - ok
23:40:30.0376 1872  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:40:30.0380 1872  sffdisk - ok
23:40:30.0410 1872  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:40:30.0415 1872  sffp_mmc - ok
23:40:30.0434 1872  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:40:30.0438 1872  sffp_sd - ok
23:40:30.0470 1872  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
23:40:30.0474 1872  sfloppy - ok
23:40:30.0519 1872  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
23:40:30.0538 1872  Sftfs - ok
23:40:30.0600 1872  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
23:40:30.0609 1872  sftlist - ok
23:40:30.0629 1872  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
23:40:30.0641 1872  Sftplay - ok
23:40:30.0682 1872  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
23:40:30.0687 1872  Sftredir - ok
23:40:30.0700 1872  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
23:40:30.0706 1872  Sftvol - ok
23:40:30.0723 1872  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
23:40:30.0725 1872  sftvsa - ok
23:40:30.0750 1872  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:40:30.0764 1872  SharedAccess - ok
23:40:30.0799 1872  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:40:30.0813 1872  ShellHWDetection - ok
23:40:30.0843 1872  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
23:40:30.0849 1872  SiSRaid2 - ok
23:40:30.0881 1872  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
23:40:30.0888 1872  SiSRaid4 - ok
23:40:31.0064 1872  [ AE40D1BC6FB02A5625516AD74CA9A309 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
23:40:31.0091 1872  Skype C2C Service - ok
23:40:31.0164 1872  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:40:31.0166 1872  SkypeUpdate - ok
23:40:31.0180 1872  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:40:31.0188 1872  Smb - ok
23:40:31.0236 1872  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:40:31.0239 1872  SNMPTRAP - ok
23:40:31.0256 1872  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:40:31.0262 1872  spldr - ok
23:40:31.0292 1872  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
23:40:31.0299 1872  Spooler - ok
23:40:31.0408 1872  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
23:40:31.0439 1872  sppsvc - ok
23:40:31.0458 1872  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:40:31.0467 1872  sppuinotify - ok
23:40:31.0497 1872  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:40:31.0512 1872  srv - ok
23:40:31.0528 1872  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:40:31.0544 1872  srv2 - ok
23:40:31.0572 1872  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
23:40:31.0583 1872  SrvHsfHDA - ok
23:40:31.0626 1872  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
23:40:31.0656 1872  SrvHsfV92 - ok
23:40:31.0677 1872  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
23:40:31.0696 1872  SrvHsfWinac - ok
23:40:31.0715 1872  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:40:31.0725 1872  srvnet - ok
23:40:31.0770 1872  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:40:31.0777 1872  SSDPSRV - ok
23:40:31.0793 1872  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:40:31.0798 1872  SstpSvc - ok
23:40:31.0820 1872  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
23:40:31.0826 1872  stexstor - ok
23:40:31.0874 1872  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
23:40:31.0889 1872  stisvc - ok
23:40:31.0908 1872  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:40:31.0914 1872  swenum - ok
23:40:31.0966 1872  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
23:40:31.0980 1872  swprv - ok
23:40:32.0125 1872  [ C447977ED2A4AE9346FE3A0579A34D7C ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
23:40:32.0156 1872  SynTP - ok
23:40:32.0223 1872  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
23:40:32.0289 1872  SysMain - ok
23:40:32.0330 1872  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:40:32.0335 1872  TabletInputService - ok
23:40:32.0358 1872  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:40:32.0366 1872  TapiSrv - ok
23:40:32.0385 1872  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
23:40:32.0388 1872  TBS - ok
23:40:32.0466 1872  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:40:32.0529 1872  Tcpip - ok
23:40:32.0592 1872  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:40:32.0612 1872  TCPIP6 - ok
23:40:32.0644 1872  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:40:32.0650 1872  tcpipreg - ok
23:40:32.0686 1872  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:40:32.0690 1872  TDPIPE - ok
23:40:32.0711 1872  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:40:32.0716 1872  TDTCP - ok
23:40:32.0753 1872  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:40:32.0760 1872  tdx - ok
23:40:32.0789 1872  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:40:32.0797 1872  TermDD - ok
23:40:32.0819 1872  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
23:40:32.0830 1872  TermService - ok
23:40:32.0835 1872  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
23:40:32.0838 1872  Themes - ok
23:40:32.0854 1872  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
23:40:32.0856 1872  THREADORDER - ok
23:40:32.0893 1872  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
23:40:32.0897 1872  TrkWks - ok
23:40:32.0955 1872  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:40:32.0959 1872  TrustedInstaller - ok
23:40:32.0978 1872  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:40:32.0986 1872  tssecsrv - ok
23:40:33.0030 1872  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:40:33.0038 1872  TsUsbFlt - ok
23:40:33.0065 1872  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
23:40:33.0071 1872  TsUsbGD - ok
23:40:33.0115 1872  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:40:33.0117 1872  tunnel - ok
23:40:33.0146 1872  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
23:40:33.0153 1872  uagp35 - ok
23:40:33.0188 1872  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:40:33.0200 1872  udfs - ok
23:40:33.0236 1872  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:40:33.0238 1872  UI0Detect - ok
23:40:33.0275 1872  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:40:33.0288 1872  uliagpkx - ok
23:40:33.0349 1872  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
23:40:33.0360 1872  umbus - ok
23:40:33.0394 1872  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
23:40:33.0402 1872  UmPass - ok
23:40:33.0508 1872  [ A678E5DDD974903DD71F503BDCACA218 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:40:33.0530 1872  UNS - ok
23:40:33.0566 1872  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
23:40:33.0572 1872  upnphost - ok
23:40:33.0627 1872  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
23:40:33.0634 1872  USBAAPL64 - ok
23:40:33.0654 1872  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:40:33.0662 1872  usbccgp - ok
23:40:33.0681 1872  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:40:33.0691 1872  usbcir - ok
23:40:33.0709 1872  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
23:40:33.0715 1872  usbehci - ok
23:40:33.0749 1872  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
23:40:33.0764 1872  usbhub - ok
23:40:33.0776 1872  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:40:33.0782 1872  usbohci - ok
23:40:33.0788 1872  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
23:40:33.0794 1872  usbprint - ok
23:40:33.0820 1872  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:40:33.0829 1872  USBSTOR - ok
23:40:33.0839 1872  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:40:33.0844 1872  usbuhci - ok
23:40:33.0935 1872  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
23:40:33.0949 1872  usbvideo - ok
23:40:33.0979 1872  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
23:40:33.0982 1872  UxSms - ok
23:40:33.0993 1872  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
23:40:33.0994 1872  VaultSvc - ok
23:40:34.0011 1872  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:40:34.0017 1872  vdrvroot - ok
23:40:34.0036 1872  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
23:40:34.0044 1872  vds - ok
23:40:34.0075 1872  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:40:34.0080 1872  vga - ok
23:40:34.0099 1872  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:40:34.0104 1872  VgaSave - ok
23:40:34.0135 1872  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:40:34.0149 1872  vhdmp - ok
23:40:34.0168 1872  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:40:34.0173 1872  viaide - ok
23:40:34.0200 1872  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:40:34.0208 1872  volmgr - ok
23:40:34.0231 1872  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:40:34.0235 1872  volmgrx - ok
23:40:34.0261 1872  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:40:34.0265 1872  volsnap - ok
23:40:34.0287 1872  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
23:40:34.0297 1872  vsmraid - ok
23:40:34.0350 1872  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
23:40:34.0372 1872  VSS - ok
23:40:34.0389 1872  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:40:34.0395 1872  vwifibus - ok
23:40:34.0423 1872  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:40:34.0429 1872  vwififlt - ok
23:40:34.0465 1872  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
23:40:34.0472 1872  W32Time - ok
23:40:34.0499 1872  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
23:40:34.0504 1872  WacomPen - ok
23:40:34.0557 1872  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:40:34.0567 1872  WANARP - ok
23:40:34.0575 1872  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:40:34.0578 1872  Wanarpv6 - ok
23:40:34.0637 1872  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
23:40:34.0656 1872  WatAdminSvc - ok
23:40:34.0704 1872  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
23:40:34.0724 1872  wbengine - ok
23:40:34.0744 1872  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:40:34.0756 1872  WbioSrvc - ok
23:40:34.0790 1872  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:40:34.0802 1872  wcncsvc - ok
23:40:34.0817 1872  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:40:34.0825 1872  WcsPlugInService - ok
23:40:34.0855 1872  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
23:40:34.0861 1872  Wd - ok
23:40:34.0900 1872  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:40:34.0923 1872  Wdf01000 - ok
23:40:34.0936 1872  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:40:34.0946 1872  WdiServiceHost - ok
23:40:34.0950 1872  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:40:34.0953 1872  WdiSystemHost - ok
23:40:34.0985 1872  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
23:40:35.0001 1872  WebClient - ok
23:40:35.0021 1872  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:40:35.0033 1872  Wecsvc - ok
23:40:35.0044 1872  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:40:35.0047 1872  wercplsupport - ok
23:40:35.0085 1872  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:40:35.0088 1872  WerSvc - ok
23:40:35.0113 1872  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:40:35.0117 1872  WfpLwf - ok
23:40:35.0130 1872  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:40:35.0135 1872  WIMMount - ok
23:40:35.0163 1872  WinDefend - ok
23:40:35.0169 1872  WinHttpAutoProxySvc - ok
23:40:35.0224 1872  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:40:35.0229 1872  Winmgmt - ok
23:40:35.0310 1872  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
23:40:35.0350 1872  WinRM - ok
23:40:35.0386 1872  [ FE88B288356E7B47B74B13372ADD906D ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
23:40:35.0394 1872  WinUSB - ok
23:40:35.0425 1872  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:40:35.0435 1872  Wlansvc - ok
23:40:35.0466 1872  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:40:35.0467 1872  wlcrasvc - ok
23:40:35.0608 1872  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:40:35.0628 1872  wlidsvc - ok
23:40:35.0665 1872  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:40:35.0666 1872  WmiAcpi - ok
23:40:35.0696 1872  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:40:35.0699 1872  wmiApSrv - ok
23:40:35.0730 1872  WMPNetworkSvc - ok
23:40:35.0852 1872  [ 83B6CA03C846FCD47F9883D77D1EB27B ] WMZuneComm      C:\Program Files\Zune\WMZuneComm.exe
23:40:35.0859 1872  WMZuneComm - ok
23:40:35.0929 1872  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:40:35.0939 1872  WPCSvc - ok
23:40:35.0958 1872  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:40:35.0964 1872  WPDBusEnum - ok
23:40:35.0992 1872  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:40:35.0993 1872  ws2ifsl - ok
23:40:36.0019 1872  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
23:40:36.0022 1872  wscsvc - ok
23:40:36.0027 1872  WSearch - ok
23:40:36.0097 1872  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:40:36.0133 1872  wuauserv - ok
23:40:36.0166 1872  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:40:36.0172 1872  WudfPf - ok
23:40:36.0221 1872  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:40:36.0237 1872  WUDFRd - ok
23:40:36.0271 1872  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:40:36.0276 1872  wudfsvc - ok
23:40:36.0337 1872  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:40:36.0369 1872  WwanSvc - ok
23:40:36.0468 1872  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
23:40:36.0478 1872  YahooAUService - ok
23:40:36.0824 1872  [ 67B787C34FB2888D01B130AE007042D8 ] ZuneNetworkSvc  C:\Program Files\Zune\ZuneNss.exe
23:40:36.0896 1872  ZuneNetworkSvc - ok
23:40:36.0983 1872  [ 4D89FC1C20CF655739EFAC5DA81A67BC ] ZuneWlanCfgSvc  C:\Program Files\Zune\ZuneWlanCfgSvc.exe
23:40:36.0988 1872  ZuneWlanCfgSvc - ok
23:40:37.0008 1872  ================ Scan global ===============================
23:40:37.0048 1872  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:40:37.0091 1872  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:40:37.0108 1872  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:40:37.0137 1872  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:40:37.0154 1872  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:40:37.0158 1872  [Global] - ok
23:40:37.0161 1872  ================ Scan MBR ==================================
23:40:37.0179 1872  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:40:37.0701 1872  \Device\Harddisk0\DR0 - ok
23:40:37.0701 1872  ================ Scan VBR ==================================
23:40:37.0729 1872  [ 39CB92BEA25B282E2CF079514151729F ] \Device\Harddisk0\DR0\Partition1
23:40:37.0731 1872  \Device\Harddisk0\DR0\Partition1 - ok
23:40:37.0747 1872  [ CA30C01EB1C2458EA5CA62AE8A49D772 ] \Device\Harddisk0\DR0\Partition2
23:40:37.0749 1872  \Device\Harddisk0\DR0\Partition2 - ok
23:40:37.0776 1872  [ 1433249A4C055EB40ABC6BE75A34A3B4 ] \Device\Harddisk0\DR0\Partition3
23:40:37.0800 1872  \Device\Harddisk0\DR0\Partition3 - ok
23:40:37.0835 1872  [ A060A7453D67F23814968B13D521FCEE ] \Device\Harddisk0\DR0\Partition4
23:40:37.0857 1872  \Device\Harddisk0\DR0\Partition4 - ok
23:40:37.0860 1872  ============================================================
23:40:37.0860 1872  Scan finished
23:40:37.0860 1872  ============================================================
23:40:37.0877 0740  Detected object count: 0
23:40:37.0877 0740  Actual detected object count: 0


#5 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 03 August 2013 - 10:48 PM

# AdwCleaner v2.306 - Logfile created 08/03/2013 at 23:45:08
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Carolyn - CAROLYN-HP
# Boot Mode : Normal
# Running from : C:\Users\Carolyn\Downloads\AdwCleaner (1).exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\Users\Administrator\AppData\Roaming\SearchProtect
Folder Deleted : C:\Users\Carolyn\AppData\Local\Conduit
Folder Deleted : C:\Users\Carolyn\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Carolyn\AppData\LocalLow\PriceGong
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3298573
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Shop To Win]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16635
 
[OK] Registry is clean.
 
*************************
 
AdwCleaner[S2].txt - [1604 octets] - [03/08/2013 23:45:08]
 
########## EOF - C:\AdwCleaner[S2].txt - [1664 octets] ##########


#6 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 03 August 2013 - 11:15 PM

ESET is running now but upon rebooting my PC from adwcleaner I received this pop up.

 

RunDLL

 

There was a problem starting C:\Program Files

(x86)\Conduit\CT3298573\plugins\TBVerifier.dll

 

The specified module could not be found.



#7 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 04 August 2013 - 04:22 AM

C:\Program Files (x86)\Avira\AntiVir Desktop\offercast_avirav7_.exe a variant of Win32/Bundled.Toolbar.Ask.D application cleaned by deleting (after the next restart) - quarantined
C:\Qoobox\Quarantine\C\Program Files (x86)\DefaultTab\DefaultTabSearch.exe.vir a variant of Win32/Toolbar.DefaultTab.B application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Carolyn\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe.vir Win32/Toolbar.DefaultTab.A application cleaned by deleting - quarantined
C:\Users\Carolyn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O1I15BYX\SPSetup[1].exe multiple threats cleaned by deleting - quarantined
C:\Users\Carolyn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QX6QW0HV\mp3-download-future-pluto[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\Carolyn\AppData\Local\Torch\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll Win32/bProtector.D application cleaned by deleting - quarantined
C:\Users\Carolyn\Downloads\avira_free_antivirus_en (1).exe a variant of Win32/Bundled.Toolbar.Ask application deleted - quarantined
C:\Users\Carolyn\Downloads\avira_free_antivirus_en.exe a variant of Win32/Bundled.Toolbar.Ask application deleted - quarantined
C:\Users\Carolyn\Downloads\cbsidlm-tr1_13-K9_Web_Protection-SEO-10487710.exe Win32/DownloadAdmin.G application cleaned by deleting - quarantined
C:\Users\Carolyn\Downloads\Setup.exe multiple threats cleaned by deleting - quarantined


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 04 August 2013 - 09:52 PM

Ok,, there are couple issues.
You have 2 AV's running and they are causing problems
AVG 2013 (Version: 13.0.3209)

Avira Free Antivirus (Version: 13.0.0.3884)
Uninstall one (I'd remove AVG)
While in there Uninstall SUPERAntispyware ( seems corrupted) and ADobe Reader X (outdated)
and reboot
 
 
Install the new free SuperAntiSpyware -
Adobe Reader XI
 
>>>>>>

There was a problem starting C:\Program Files
(x86)\Conduit\CT3298573\plugins\TBVerifier.dll
 
The specified module could not be found.

 
 
Its not unusual to receive such an error after using specialized fix tools.

A "Cannot find...", "Could not run...", "Error loading... or "specific module could not be found" message is usually related to malware that was set to run at startup but has been deleted. Windows is trying to load this file but cannot locate it since the file was mostly likely removed during an anti-virus or anti-malware scan. However, an associated orphaned registry entry remains and is telling Windows to load the file when you boot up. Since the file no longer exists, Windows will display an error message. You need to remove this registry entry so Windows stops searching for the file when it loads.

To resolve this, download Autoruns search for the related entry and then delete it.

Create a new folder on your hard drive called AutoRuns (C:\AutoRuns) and extract (unzip) the file there. Click HERE if you're not sure how to do this.)
Open the folder and double-click on autoruns.exe to launch it.
Please be patient as it scans and populates the entries.
When done scanning, it will say Ready at the bottom.
Scroll through the list and look for a startup entry related to the file(s) in the error message. -->>>TBVerifier.dll
 
Right-click on the entry and choose delete.
Reboot your computer and see if the startup error returns.


How is it now?

Edited by boopme, 04 August 2013 - 10:07 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 05 August 2013 - 01:54 AM

Yes the notification is gone and my computer appears to be running very smooth, only  two problems remain.

1. I am still greeted to this message upon booting.

 

SetDefault.exe - Application Error

 

The application was unable to start correctly (0xc000007b). Click OK to

close the application.

 

I have booted into safe mode and the error does not appear there. I followed Microsoft's little guide to check/uncheck services and it still appears.

 

2. Avira will still not let me enable web protection. It was a friend who had originally installed avira for me, so I am unsure if this is a paid feature, but I can not get Avira's web protection to turn on or the toolbar to be added. I uninstalled and reinstalled it and it informed me that it was installed incorrectly? 

 

I would like to thank you for your patience with me thus far. You have been very helpful. :)



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 05 August 2013 - 09:47 AM

You're welcome
Let's see if this straightens things out.

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

p22002979.gif



Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22002980.gif


Go to Step 4 and under "System Restore" click on Create button:

p22002982.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22003030.gif

Post Windows Repair log (_windows_repair_log.txt) which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 05 August 2013 - 09:26 PM

  I actually ran through all steps a second time due to avira turning itself back on. I'm including the full log but I believe it shows both runs. If it appears I did it incorrectly, I will happily restart the process. 
  Running Repair Under System Account
   Running Repair Under System Account
Starting Repairs...
   Start (8/5/2013 9:09:39 PM)
 
Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (8/5/2013 9:09:40 PM)
   Running Repair Under Current User Account
   Done (8/5/2013 9:09:45 PM)
 
Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (8/5/2013 9:09:45 PM)
   Running Repair Under System Account
   Done (8/5/2013 9:11:45 PM)
 
Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (8/5/2013 9:11:45 PM)
   Running Repair Under System Account
   Done (8/5/2013 9:12:23 PM)
 
Register System Files
   Start (8/5/2013 9:12:23 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:13:01 PM)
 
Repair WMI
   Start (8/5/2013 9:13:01 PM)
   Running Repair Under Current User Account
Invalid Global Switch.
 
Invalid Global Switch.
 
   Running Repair Under System Account
Invalid Global Switch.
 
Invalid Global Switch.
 
   Done (8/5/2013 9:15:21 PM)
 
Repair Windows Firewall
   Start (8/5/2013 9:15:21 PM)
   Running Repair Under Current User Account
The Internet Connection Sharing (ICS) service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Internet Connection Sharing (ICS) service could not be started.
 
The service did not report an error.
 
More help is available by typing NET HELPMSG 3534.
 
   Running Repair Under System Account
The Internet Connection Sharing (ICS) service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Internet Connection Sharing (ICS) service could not be started.
 
The service did not report an error.
 
More help is available by typing NET HELPMSG 3534.
 
   Done (8/5/2013 9:15:57 PM)
 
Repair Internet Explorer
   Start (8/5/2013 9:15:57 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:16:37 PM)
 
Repair MDAC/MS Jet
   Start (8/5/2013 9:16:37 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:16:58 PM)
 
Repair Hosts File
   Start (8/5/2013 9:16:58 PM)
   Running Repair Under System Account
   Done (8/5/2013 9:17:00 PM)
 
Remove Policies Set By Infections
   Start (8/5/2013 9:17:00 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:17:05 PM)
 
Repair Icons
   Start (8/5/2013 9:17:05 PM)
   Running Repair Under System Account
Could Not Find C:\Users\Carolyn\AppData\Local\IconCache.db.bak
Could Not Find C:\Users\Carolyn\AppData\Local\IconCache.db
   Done (8/5/2013 9:17:07 PM)
 
Repair Winsock & DNS Cache
   Start (8/5/2013 9:17:07 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:17:27 PM)
 
Repair Proxy Settings
   Start (8/5/2013 9:17:27 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:17:31 PM)
 
Repair Windows Updates
   Start (8/5/2013 9:17:32 PM)
   Running Repair Under Current User Account
The Windows Update service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The system cannot find the file specified.
   Running Repair Under System Account
The Cryptographic Services service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Background Intelligent Transfer Service service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Windows Update service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The system cannot find the file specified.
   Done (8/5/2013 9:17:55 PM)
 
Repair CD/DVD Missing/Not Working
   Start (8/5/2013 9:17:55 PM)
   Done (8/5/2013 9:17:55 PM)
 
Repair Volume Shadow Copy Service
   Start (8/5/2013 9:17:55 PM)
   Running Repair Under Current User Account
The Volume Shadow Copy service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Microsoft Software Shadow Copy Provider service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
   Running Repair Under System Account
The Volume Shadow Copy service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Microsoft Software Shadow Copy Provider service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
   Done (8/5/2013 9:18:04 PM)
 
Repair MSI (Windows Installer)
   Start (8/5/2013 9:18:04 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:15 PM)
 
Repair bat Association
   Start (8/5/2013 9:18:15 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:19 PM)
 
Repair cmd Association
   Start (8/5/2013 9:18:19 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:24 PM)
 
Repair com Association
   Start (8/5/2013 9:18:24 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:29 PM)
 
Repair Directory Association
   Start (8/5/2013 9:18:29 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:33 PM)
 
Repair Drive Association
   Start (8/5/2013 9:18:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:38 PM)
 
Repair exe Association
   Start (8/5/2013 9:18:38 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:43 PM)
 
Repair Folder Association
   Start (8/5/2013 9:18:43 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:48 PM)
 
Repair inf Association
   Start (8/5/2013 9:18:48 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:52 PM)
 
Repair lnk (Shortcuts) Association
   Start (8/5/2013 9:18:52 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:18:57 PM)
 
Repair msc Association
   Start (8/5/2013 9:18:57 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:19:02 PM)
 
Repair reg Association
   Start (8/5/2013 9:19:02 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:19:07 PM)
 
Repair scr Association
   Start (8/5/2013 9:19:07 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:19:11 PM)
 
Repair Windows Safe Mode
   Start (8/5/2013 9:19:11 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:19:16 PM)
 
Repair Print Spooler
   Start (8/5/2013 9:19:16 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:19:29 PM)
 
Restore Important Windows Services
   Start (8/5/2013 9:19:29 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:19:34 PM)
 
Set Windows Services To Default Startup
   Start (8/5/2013 9:19:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 9:19:43 PM)
 
Cleaning up empty logs...
 
All Selected Repairs Done.
   Done (8/5/2013 9:19:43 PM)
   Total Repair Time: 00:10:04
 
 
...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under System Account
   Running Repair Under System Account
Starting Repairs...
   Start (8/5/2013 10:00:49 PM)
 
Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (8/5/2013 10:00:49 PM)
   Running Repair Under Current User Account
   Done (8/5/2013 10:00:55 PM)
 
Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (8/5/2013 10:00:55 PM)
   Running Repair Under System Account
   Done (8/5/2013 10:02:51 PM)
 
Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (8/5/2013 10:02:51 PM)
   Running Repair Under System Account
   Done (8/5/2013 10:03:27 PM)
 
Register System Files
   Start (8/5/2013 10:03:27 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:04:08 PM)
 
Repair WMI
   Start (8/5/2013 10:04:08 PM)
   Running Repair Under Current User Account
Invalid Global Switch.
 
Invalid Global Switch.
 
   Running Repair Under System Account
Invalid Global Switch.
 
Invalid Global Switch.
 
   Done (8/5/2013 10:06:32 PM)
 
Repair Windows Firewall
   Start (8/5/2013 10:06:32 PM)
   Running Repair Under Current User Account
The Internet Connection Sharing (ICS) service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Internet Connection Sharing (ICS) service could not be started.
 
The service did not report an error.
 
More help is available by typing NET HELPMSG 3534.
 
   Running Repair Under System Account
The Internet Connection Sharing (ICS) service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Internet Connection Sharing (ICS) service could not be started.
 
The service did not report an error.
 
More help is available by typing NET HELPMSG 3534.
 
   Done (8/5/2013 10:07:08 PM)
 
Repair Internet Explorer
   Start (8/5/2013 10:07:08 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:07:50 PM)
 
Repair MDAC/MS Jet
   Start (8/5/2013 10:07:50 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:08:11 PM)
 
Repair Hosts File
   Start (8/5/2013 10:08:11 PM)
   Running Repair Under System Account
Access is denied.
   Done (8/5/2013 10:08:13 PM)
 
Remove Policies Set By Infections
   Start (8/5/2013 10:08:13 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:08:18 PM)
 
Repair Icons
   Start (8/5/2013 10:08:18 PM)
   Running Repair Under System Account
Could Not Find C:\Users\Carolyn\AppData\Local\IconCache.db.bak
Could Not Find C:\Users\Carolyn\AppData\Local\IconCache.db
   Done (8/5/2013 10:08:21 PM)
 
Repair Winsock & DNS Cache
   Start (8/5/2013 10:08:21 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:08:40 PM)
 
Repair Proxy Settings
   Start (8/5/2013 10:08:40 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:08:45 PM)
 
Repair Windows Updates
   Start (8/5/2013 10:08:45 PM)
   Running Repair Under Current User Account
The Windows Update service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The system cannot find the file specified.
   Running Repair Under System Account
The Cryptographic Services service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Background Intelligent Transfer Service service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Windows Update service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The system cannot find the file specified.
   Done (8/5/2013 10:09:06 PM)
 
Repair CD/DVD Missing/Not Working
   Start (8/5/2013 10:09:06 PM)
   Done (8/5/2013 10:09:06 PM)
 
Repair Volume Shadow Copy Service
   Start (8/5/2013 10:09:06 PM)
   Running Repair Under Current User Account
The Volume Shadow Copy service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Microsoft Software Shadow Copy Provider service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
   Running Repair Under System Account
The Volume Shadow Copy service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Microsoft Software Shadow Copy Provider service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
   Done (8/5/2013 10:09:13 PM)
 
Repair MSI (Windows Installer)
   Start (8/5/2013 10:09:13 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:09:22 PM)
 
Repair bat Association
   Start (8/5/2013 10:09:22 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:09:27 PM)
 
Repair cmd Association
   Start (8/5/2013 10:09:27 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:09:32 PM)
 
Repair com Association
   Start (8/5/2013 10:09:32 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
 
Stopping, Waiting for current repair to finish...
 
   Done (8/5/2013 10:09:36 PM)
 
Repairs Stopped By User.
   Done (8/5/2013 10:09:36 PM)
   Total Repair Time: 00:08:47
 
Starting Repairs...
   Start (8/5/2013 10:10:00 PM)
 
Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (8/5/2013 10:10:00 PM)
   Running Repair Under Current User Account
   Done (8/5/2013 10:10:02 PM)
 
Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (8/5/2013 10:10:03 PM)
   Running Repair Under System Account
   Done (8/5/2013 10:11:56 PM)
 
Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (8/5/2013 10:11:56 PM)
   Running Repair Under System Account
   Done (8/5/2013 10:12:34 PM)
 
Register System Files
   Start (8/5/2013 10:12:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:13:03 PM)
 
Repair WMI
   Start (8/5/2013 10:13:03 PM)
   Running Repair Under Current User Account
Invalid Global Switch.
 
Invalid Global Switch.
 
   Running Repair Under System Account
Invalid Global Switch.
 
Invalid Global Switch.
 
   Done (8/5/2013 10:14:58 PM)
 
Repair Windows Firewall
   Start (8/5/2013 10:14:58 PM)
   Running Repair Under Current User Account
The Internet Connection Sharing (ICS) service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Internet Connection Sharing (ICS) service could not be started.
 
The service did not report an error.
 
More help is available by typing NET HELPMSG 3534.
 
   Running Repair Under System Account
The Internet Connection Sharing (ICS) service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Internet Connection Sharing (ICS) service could not be started.
 
The service did not report an error.
 
More help is available by typing NET HELPMSG 3534.
 
   Done (8/5/2013 10:15:28 PM)
 
Repair Internet Explorer
   Start (8/5/2013 10:15:28 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:15:59 PM)
 
Repair MDAC/MS Jet
   Start (8/5/2013 10:15:59 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:16:17 PM)
 
Repair Hosts File
   Start (8/5/2013 10:16:17 PM)
   Running Repair Under System Account
   Done (8/5/2013 10:16:19 PM)
 
Remove Policies Set By Infections
   Start (8/5/2013 10:16:19 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:16:24 PM)
 
Repair Icons
   Start (8/5/2013 10:16:24 PM)
   Running Repair Under System Account
Could Not Find C:\Users\Carolyn\AppData\Local\IconCache.db.bak
The system cannot find the file specified.
Could Not Find C:\Users\Carolyn\AppData\Local\IconCache.db
Could Not Find C:\Users\Carolyn\AppData\Local\IconCache.db.bak
   Done (8/5/2013 10:16:26 PM)
 
Repair Winsock & DNS Cache
   Start (8/5/2013 10:16:26 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:16:41 PM)
 
Repair Proxy Settings
   Start (8/5/2013 10:16:41 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:16:46 PM)
 
Repair Windows Updates
   Start (8/5/2013 10:16:46 PM)
   Running Repair Under Current User Account
The Cryptographic Services service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Background Intelligent Transfer Service service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Windows Update service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The system cannot find the file specified.
   Running Repair Under System Account
The Cryptographic Services service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Background Intelligent Transfer Service service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Windows Update service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The system cannot find the file specified.
   Done (8/5/2013 10:16:59 PM)
 
Repair CD/DVD Missing/Not Working
   Start (8/5/2013 10:16:59 PM)
   Done (8/5/2013 10:16:59 PM)
 
Repair Volume Shadow Copy Service
   Start (8/5/2013 10:16:59 PM)
   Running Repair Under Current User Account
The Volume Shadow Copy service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Microsoft Software Shadow Copy Provider service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
   Running Repair Under System Account
The Volume Shadow Copy service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
The Microsoft Software Shadow Copy Provider service is not started.
 
More help is available by typing NET HELPMSG 3521.
 
   Done (8/5/2013 10:17:04 PM)
 
Repair MSI (Windows Installer)
   Start (8/5/2013 10:17:04 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:13 PM)
 
Repair bat Association
   Start (8/5/2013 10:17:13 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:18 PM)
 
Repair cmd Association
   Start (8/5/2013 10:17:18 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:23 PM)
 
Repair com Association
   Start (8/5/2013 10:17:23 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:27 PM)
 
Repair Directory Association
   Start (8/5/2013 10:17:27 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:32 PM)
 
Repair Drive Association
   Start (8/5/2013 10:17:32 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:37 PM)
 
Repair exe Association
   Start (8/5/2013 10:17:37 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:42 PM)
 
Repair Folder Association
   Start (8/5/2013 10:17:42 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:46 PM)
 
Repair inf Association
   Start (8/5/2013 10:17:46 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:51 PM)
 
Repair lnk (Shortcuts) Association
   Start (8/5/2013 10:17:51 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:17:56 PM)
 
Repair msc Association
   Start (8/5/2013 10:17:56 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:18:01 PM)
 
Repair reg Association
   Start (8/5/2013 10:18:01 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:18:06 PM)
 
Repair scr Association
   Start (8/5/2013 10:18:06 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:18:10 PM)
 
Repair Windows Safe Mode
   Start (8/5/2013 10:18:10 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:18:15 PM)
 
Repair Print Spooler
   Start (8/5/2013 10:18:15 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:18:28 PM)
 
Restore Important Windows Services
   Start (8/5/2013 10:18:28 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:18:33 PM)
 
Set Windows Services To Default Startup
   Start (8/5/2013 10:18:33 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (8/5/2013 10:18:42 PM)
 
Cleaning up empty logs...
 
All Selected Repairs Done.
   Done (8/5/2013 10:18:42 PM)
   Total Repair Time: 00:08:42
 
 
...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under System Account
 

 


Edited by TheEvilWithin, 05 August 2013 - 09:38 PM.


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:22 AM

Posted 05 August 2013 - 09:47 PM

Hmmm.... Lets look at this log pleas.

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 TheEvilWithin

TheEvilWithin
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:22 AM

Posted 05 August 2013 - 10:21 PM

Farbar Service Scanner Version: 04-08-2013
Ran by Carolyn (administrator) on 05-08-2013 at 23:20:16
Running from "C:\Users\Carolyn\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users