Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Viruses : Adware/adware.Gen TR/Winwebsec.A13390


  • Please log in to reply
19 replies to this topic

#1 LTre

LTre

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 07 August 2013 - 02:14 PM

Good day, my computer virus protection quarantined 5 viruses on 8/5/13 thru 8/7/13.   Adware.Gen    Source: C.Users\Lorna\app...\DNS.exe

...dnsbasic_dnsbse50r1[1].exe

TR/winwebsec.A.13390        Source:       C:SRECYCL...\SRDGW4l3exe

 

Please help.

 

Thanks



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 07 August 2013 - 08:39 PM

Hello which AV was this. It has removed them, so are you having some issues? redirecting, pop ups or something???

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 08 August 2013 - 06:31 AM

Avira anti virus. They are still more, but I am going to do what you told me to.



#4 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 08 August 2013 - 10:30 AM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Lorna (administrator) on 08-08-2013 at 11:27:56
Running from "C:\Users\Lorna\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

802.11n Wireless LAN Card = Wireless Network Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1 publish=Yes
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Lorna-HP
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.2wire.net

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 68-A3-C4-C8-F4-75
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : 802.11n Wireless LAN Card
   Physical Address. . . . . . . . . : 68-A3-C4-C8-F4-74
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::b8ad:8d4b:b57a:10ba%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, August 08, 2013 7:24:24 AM
   Lease Expires . . . . . . . . . . : Friday, August 09, 2013 11:22:28 AM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 325624772
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-1C-AB-DC-E8-9A-8F-73-0D-D2
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : example.org
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : E8-9A-8F-73-0D-D2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Hamachi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-97-BE-02
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::1997:be02(Preferred)
   Link-local IPv6 Address . . . . . : fe80::ddff:6da2:a38e:fc89%15(Preferred)
   IPv4 Address. . . . . . . . . . . : 25.151.190.2(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Thursday, August 08, 2013 11:22:25 AM
   Lease Expires . . . . . . . . . . : Thursday, August 08, 2013 11:30:57 AM
   Default Gateway . . . . . . . . . : 5.0.0.1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 293239270
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-1C-AB-DC-E8-9A-8F-73-0D-D2
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.gateway.2wire.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.example.org:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AB052C5F-3BB3-47DE-A0B7-F3BFB5F14A52}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{9F9930E2-9F9A-4402-904F-D26FE6168554}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4008:802::1005
   74.125.229.238
   74.125.229.229
   74.125.229.226
   74.125.229.232
   74.125.229.227
   74.125.229.230
   74.125.229.228
   74.125.229.225
   74.125.229.233
   74.125.229.224
   74.125.229.231

Pinging google.com [74.125.229.225] with 32 bytes of data:
Reply from 74.125.229.225: bytes=32 time=35ms TTL=50
Reply from 74.125.229.225: bytes=32 time=35ms TTL=50

Ping statistics for 74.125.229.225:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 35ms, Maximum = 35ms, Average = 35ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=145ms TTL=39
Reply from 206.190.36.45: bytes=32 time=159ms TTL=39

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 145ms, Maximum = 159ms, Average = 152ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 18...68 a3 c4 c8 f4 75 ......Microsoft Virtual WiFi Miniport Adapter
 11...68 a3 c4 c8 f4 74 ......802.11n Wireless LAN Card
 10...e8 9a 8f 73 0d d2 ......Realtek PCIe GBE Family Controller
 15...7a 79 19 97 be 02 ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0          5.0.0.1     25.151.190.2   9256
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.65     25
         25.0.0.0        255.0.0.0         On-link      25.151.190.2   9256
     25.151.190.2  255.255.255.255         On-link      25.151.190.2   9256
   25.255.255.255  255.255.255.255         On-link      25.151.190.2   9256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.65    281
     192.168.1.65  255.255.255.255         On-link      192.168.1.65    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.65    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      25.151.190.2   9256
        224.0.0.0        240.0.0.0         On-link      192.168.1.65    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      25.151.190.2   9256
  255.255.255.255  255.255.255.255         On-link      192.168.1.65    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0          5.0.0.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 15    276 2620:9b::/64             On-link
 15    276 2620:9b::/96             On-link
 15    276 2620:9b::1997:be02/128   On-link
 15    276 fe80::/64                On-link
 11    281 fe80::/64                On-link
 11    281 fe80::b8ad:8d4b:b57a:10ba/128
                                    On-link
 15    276 fe80::ddff:6da2:a38e:fc89/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    276 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 02 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 03 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 04 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 05 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 06 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 07 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 08 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 02 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 03 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 04 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 05 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 06 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 07 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 08 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 16 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 17 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 18 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 19 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/07/2013 06:48:25 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15600

Error: (08/07/2013 06:48:25 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15600

Error: (08/07/2013 06:48:25 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/05/2013 06:26:14 PM) (Source: Software Protection Platform Service) (User: )
Description: Acquisition of genuine ticket failed (hr=0x80072EE2) for template Id 66c92734-d682-4d71-983e-d6ec3f16059f

Error: (08/05/2013 06:26:14 PM) (Source: Software Protection Platform Service) (User: )
Description: License acquisition failure details.
hr=0x80072EE2

Error: (08/05/2013 03:20:03 PM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 10.0.9200.16635 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 176c

Start Time: 01ce9210bb766569

Termination Time: 0

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:

Error: (08/05/2013 11:23:32 AM) (Source: Application Error) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 10.0.9200.16635, time stamp: 0x51b7a921
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x742ee2d4
Faulting process id: 0x17bc
Faulting application start time: 0xIEXPLORE.EXE0
Faulting application path: IEXPLORE.EXE1
Faulting module path: IEXPLORE.EXE2
Report Id: IEXPLORE.EXE3

Error: (08/05/2013 07:49:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: spoolsv.exe, version: 6.1.7601.17777, time stamp: 0x4f35fc1d
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0x40000015
Fault offset: 0x000000000002a84e
Faulting process id: 0x540
Faulting application start time: 0xspoolsv.exe0
Faulting application path: spoolsv.exe1
Faulting module path: spoolsv.exe2
Report Id: spoolsv.exe3

Error: (08/05/2013 07:49:26 AM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start

Error: (08/05/2013 07:36:22 AM) (Source: CltMngSvc) (User: )
Description: CltMngSvcServiceInstall: Fail to Start serviceSearch Protect by Conduit Updater (Error: 1056)

System errors:
=============
Error: (08/08/2013 07:26:42 AM) (Source: Service Control Manager) (User: )
Description: The CalendarSynchService service failed to start due to the following error:
%%2

Error: (08/08/2013 07:24:42 AM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.2 service failed to start due to the following error:
%%2

Error: (08/08/2013 07:24:21 AM) (Source: Service Control Manager) (User: )
Description: The WajamUpdater service failed to start due to the following error:
%%2

Error: (08/08/2013 07:24:21 AM) (Source: Service Control Manager) (User: )
Description: The LogMeIn Hamachi Tunneling Engine service failed to start due to the following error:
%%2

Error: (08/08/2013 07:24:21 AM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.2 service failed to start due to the following error:
%%2

Error: (08/07/2013 07:53:09 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/07/2013 10:48:53 AM) (Source: Service Control Manager) (User: )
Description: The HP Health Check Service service failed to start due to the following error:
%%1053

Error: (08/07/2013 10:48:53 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the HP Health Check Service service to connect.

Error: (08/07/2013 10:48:21 AM) (Source: Service Control Manager) (User: )
Description: The CalendarSynchService service failed to start due to the following error:
%%2

Error: (08/07/2013 10:46:20 AM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.2 service failed to start due to the following error:
%%2

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-05-01 19:24:51.241
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 19:19:24.787
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 18:55:57.064
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 18:54:42.889
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 18:34:33.726
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 16:42:35.213
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 16:13:27.327
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 16:12:13.822
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 15:47:26.621
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-05-01 15:27:52.767
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Antivirus Free Edition\avc3\avc3_sig_188\avcuf64.dll because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

ActiveCheck component for HP Active Support Library (Version: 3.0.0.3)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
Airport Mania (Version: 2.2.0.95)
AMD APP SDK Runtime (Version: 2.5.709.2)
AMD AVIVO64 Codecs (Version: 11.6.0.10711)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2013.0328.2218.38225)
AMD Media Foundation Decoders (Version: 1.0.60711.2300)
AMD VISION Engine Control Center (Version: 2011.0711.2230.38552)
AMD VISION Engine Control Center (Version: 2013.0328.2218.38225)
Ancient Hearts (Version: 2.2.0.95)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.24.0)
Avira Free Antivirus (Version: 13.0.0.3885)
Avira SearchFree Toolbar plus Web Protection Updater (Version: 1.2.5.42066)
Azteca (Version: 2.2.0.95)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bing Maps 3D (Version: 4.0.903.16005)
Bing Rewards Client Installer (Version: 16.0.345.0)
Blasterball 3 (Version: 2.2.0.95)
Bob the Builder Can-Do-Zoo (Version: 2.2.0.95)
Bonjour (Version: 3.0.0.10)
Bounce Symphony (Version: 2.2.0.95)
Build-a-Lot - The Elizabethan Era (Version: 2.2.0.95)
Build-a-lot (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (Version: 2013.0328.2218.38225)
Catalyst Control Center Localization All (Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (Version: 2013.0328.2217.38225)
CCC Help Czech (Version: 2013.0328.2217.38225)
CCC Help Danish (Version: 2013.0328.2217.38225)
CCC Help Dutch (Version: 2013.0328.2217.38225)
CCC Help English (Version: 2013.0328.2217.38225)
CCC Help Finnish (Version: 2013.0328.2217.38225)
CCC Help French (Version: 2013.0328.2217.38225)
CCC Help German (Version: 2013.0328.2217.38225)
CCC Help Greek (Version: 2013.0328.2217.38225)
CCC Help Hungarian (Version: 2013.0328.2217.38225)
CCC Help Italian (Version: 2013.0328.2217.38225)
CCC Help Japanese (Version: 2013.0328.2217.38225)
CCC Help Korean (Version: 2013.0328.2217.38225)
CCC Help Norwegian (Version: 2013.0328.2217.38225)
CCC Help Polish (Version: 2013.0328.2217.38225)
CCC Help Portuguese (Version: 2013.0328.2217.38225)
CCC Help Russian (Version: 2013.0328.2217.38225)
CCC Help Spanish (Version: 2013.0328.2217.38225)
CCC Help Swedish (Version: 2011.0711.2229.38552)
CCC Help Swedish (Version: 2013.0328.2217.38225)
CCC Help Thai (Version: 2013.0328.2217.38225)
CCC Help Turkish (Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2013.0328.2218.38225)
Chuzzle Deluxe (Version: 2.2.0.95)
Collapse Crunch (Version: 2.2.0.95)
D3DX10 (Version: 15.4.2368.0902)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Dora's World Adventure (Version: 2.2.0.95)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.95)
Heroes of Hellas 2 - Olympia (Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HP Auto (Version: 1.0.12494.3472)
HP Client Services (Version: 1.0.12656.3472)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Game Console
HP Odometer (Version: 2.10.0000)
HP Support Information (Version: 10.1.1000)
HP TouchSmart Default Magnets (Version: 1.0.0.0)
HP Vision Hardware Diagnostics (Version: 2.5.0.0)
HPAsset component for HP Active Support Library (Version: 3.0.0.7)
iCloud (Version: 2.1.2.8)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
LessTabs (Version: 1.7.0.0)
Lexmark 5400 Series
Mah Jong Medley (Version: 2.2.0.95)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mozilla Maintenance Service (Version: 23.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies (Version: 2.2.0.95)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
QuickTime (Version: 7.73.80.64)
Ralink RT2860 Wireless LAN Card
Recovery Manager (Version: 5.5.3219)
Revo Uninstaller 1.94 (Version: 1.94)
SDK (Version: 2.22.002)
Skip-Bo - Castaway Caper (Version: 2.2.0.95)
Slingo Deluxe (Version: 2.2.0.95)
StuffIt 2010 (Version: 14.0.0)
Tropical Fish Shop - Annabel's Adventure (Version: 2.2.0.95)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0) (Version: 11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 3839.3 MB
Available physical RAM: 2636.1 MB
Total Pagefile: 7676.78 MB
Available Pagefile: 5597.17 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.25 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:682.45 GB) (Free:623.24 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:16.09 GB) (Free:1.98 GB) NTFS

========================= Users: ========================================

User accounts for \\LORNA-HP

Administrator            Carlos                   Guest                   
Lorna                   

**** End of log ****



#5 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 08 August 2013 - 10:45 AM

11:41:05.0626 10348  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
11:41:07.0188 10348  ============================================================
11:41:07.0188 10348  Current date / time: 2013/08/08 11:41:07.0188
11:41:07.0188 10348  SystemInfo:
11:41:07.0188 10348 
11:41:07.0188 10348  OS Version: 6.1.7601 ServicePack: 1.0
11:41:07.0188 10348  Product type: Workstation
11:41:07.0188 10348  ComputerName: LORNA-HP
11:41:07.0188 10348  UserName: Lorna
11:41:07.0188 10348  Windows directory: C:\Windows
11:41:07.0188 10348  System windows directory: C:\Windows
11:41:07.0188 10348  Running under WOW64
11:41:07.0188 10348  Processor architecture: Intel x64
11:41:07.0188 10348  Number of processors: 2
11:41:07.0188 10348  Page size: 0x1000
11:41:07.0188 10348  Boot type: Normal boot
11:41:07.0188 10348  ============================================================
11:41:08.0109 10348  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:41:08.0124 10348  ============================================================
11:41:08.0124 10348  \Device\Harddisk0\DR0:
11:41:08.0124 10348  MBR partitions:
11:41:08.0124 10348  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:41:08.0124 10348  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3283F, BlocksNum 0x554E47C1
11:41:08.0124 10348  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x55517000, BlocksNum 0x202E800
11:41:08.0124 10348  ============================================================
11:41:08.0140 10348  C: <-> \Device\Harddisk0\DR0\Partition2
11:41:08.0187 10348  D: <-> \Device\Harddisk0\DR0\Partition3
11:41:08.0187 10348  ============================================================
11:41:08.0187 10348  Initialize success
11:41:08.0187 10348  ============================================================
11:41:10.0355 10804  ============================================================
11:41:10.0355 10804  Scan started
11:41:10.0355 10804  Mode: Manual;
11:41:10.0355 10804  ============================================================
11:41:12.0414 10804  ================ Scan system memory ========================
11:41:12.0414 10804  System memory - ok
11:41:12.0414 10804  ================ Scan services =============================
11:41:12.0586 10804  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:41:12.0586 10804  1394ohci - ok
11:41:12.0695 10804  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:41:12.0695 10804  ACPI - ok
11:41:12.0789 10804  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:41:12.0789 10804  AcpiPmi - ok
11:41:12.0976 10804  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:41:12.0976 10804  AdobeARMservice - ok
11:41:13.0085 10804  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:41:13.0101 10804  AdobeFlashPlayerUpdateSvc - ok
11:41:13.0132 10804  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
11:41:13.0147 10804  adp94xx - ok
11:41:13.0179 10804  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
11:41:13.0179 10804  adpahci - ok
11:41:13.0179 10804  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
11:41:13.0194 10804  adpu320 - ok
11:41:13.0210 10804  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:41:13.0210 10804  AeLookupSvc - ok
11:41:13.0257 10804  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
11:41:13.0257 10804  AFD - ok
11:41:13.0288 10804  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
11:41:13.0303 10804  agp440 - ok
11:41:13.0350 10804  akaeyqtk - ok
11:41:13.0366 10804  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
11:41:13.0366 10804  ALG - ok
11:41:13.0397 10804  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:41:13.0397 10804  aliide - ok
11:41:13.0413 10804  [ A7F93FAB135136FD700D34EF928874D1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:41:13.0413 10804  AMD External Events Utility - ok
11:41:13.0459 10804  AMD FUEL Service - ok
11:41:13.0475 10804  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
11:41:13.0475 10804  amdide - ok
11:41:13.0506 10804  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
11:41:13.0522 10804  amdiox64 - ok
11:41:13.0553 10804  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
11:41:13.0553 10804  AmdK8 - ok
11:41:13.0740 10804  [ 0D6F56D88E1C2025DCBC6B3A0B71A93F ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:41:13.0787 10804  amdkmdag - ok
11:41:13.0834 10804  [ 69A2A4B4285A120EA26EF8F5B9E749C7 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
11:41:13.0834 10804  amdkmdap - ok
11:41:13.0865 10804  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
11:41:13.0865 10804  AmdPPM - ok
11:41:13.0881 10804  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:41:13.0881 10804  amdsata - ok
11:41:13.0912 10804  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
11:41:13.0912 10804  amdsbs - ok
11:41:13.0927 10804  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:41:13.0927 10804  amdxata - ok
11:41:13.0990 10804  [ 2E2B1A491CB78C7D8C8A265C004B1F79 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
11:41:13.0990 10804  AntiVirSchedulerService - ok
11:41:14.0005 10804  [ AAE3238C2A0B2CF17851B3D06C8EA8C0 ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
11:41:14.0005 10804  AntiVirService - ok
11:41:14.0037 10804  [ 35AEA74A23D2441ED9068D0D967E2ED2 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
11:41:14.0037 10804  AntiVirWebService - ok
11:41:14.0068 10804  [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.01   C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:41:14.0083 10804  AODDriver4.01 - ok
11:41:14.0083 10804  [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:41:14.0083 10804  AODDriver4.2 - ok
11:41:14.0115 10804  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
11:41:14.0115 10804  AppID - ok
11:41:14.0130 10804  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:41:14.0130 10804  AppIDSvc - ok
11:41:14.0161 10804  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
11:41:14.0161 10804  Appinfo - ok
11:41:14.0255 10804  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:41:14.0255 10804  Apple Mobile Device - ok
11:41:14.0302 10804  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
11:41:14.0302 10804  arc - ok
11:41:14.0317 10804  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
11:41:14.0317 10804  arcsas - ok
11:41:14.0395 10804  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:41:14.0395 10804  aspnet_state - ok
11:41:14.0427 10804  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:41:14.0427 10804  AsyncMac - ok
11:41:14.0458 10804  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
11:41:14.0458 10804  atapi - ok
11:41:14.0489 10804  [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie64.sys
11:41:14.0489 10804  AtiPcie - ok
11:41:14.0536 10804  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:41:14.0536 10804  AudioEndpointBuilder - ok
11:41:14.0551 10804  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:41:14.0551 10804  AudioSrv - ok
11:41:14.0583 10804  [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
11:41:14.0598 10804  avgntflt - ok
11:41:14.0629 10804  [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
11:41:14.0629 10804  avipbb - ok
11:41:14.0645 10804  [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
11:41:14.0645 10804  avkmgr - ok
11:41:14.0692 10804  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:41:14.0692 10804  AxInstSV - ok
11:41:14.0739 10804  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
11:41:14.0739 10804  b06bdrv - ok
11:41:14.0770 10804  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:41:14.0785 10804  b57nd60a - ok
11:41:14.0817 10804  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:41:14.0817 10804  BDESVC - ok
11:41:14.0832 10804  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:41:14.0832 10804  Beep - ok
11:41:14.0879 10804  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
11:41:14.0879 10804  BFE - ok
11:41:14.0895 10804  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
11:41:14.0910 10804  BITS - ok
11:41:14.0910 10804  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:41:14.0910 10804  blbdrive - ok
11:41:14.0973 10804  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:41:14.0973 10804  Bonjour Service - ok
11:41:14.0973 10804  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:41:14.0973 10804  bowser - ok
11:41:14.0988 10804  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:41:14.0988 10804  BrFiltLo - ok
11:41:15.0004 10804  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:41:15.0004 10804  BrFiltUp - ok
11:41:15.0051 10804  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
11:41:15.0051 10804  BridgeMP - ok
11:41:15.0082 10804  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
11:41:15.0082 10804  Browser - ok
11:41:15.0097 10804  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:41:15.0097 10804  Brserid - ok
11:41:15.0113 10804  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:41:15.0113 10804  BrSerWdm - ok
11:41:15.0129 10804  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:41:15.0129 10804  BrUsbMdm - ok
11:41:15.0129 10804  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:41:15.0129 10804  BrUsbSer - ok
11:41:15.0144 10804  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
11:41:15.0144 10804  BTHMODEM - ok
11:41:15.0175 10804  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
11:41:15.0175 10804  bthserv - ok
11:41:15.0191 10804  CalendarSynchService - ok
11:41:15.0222 10804  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:41:15.0222 10804  cdfs - ok
11:41:15.0253 10804  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
11:41:15.0253 10804  cdrom - ok
11:41:15.0300 10804  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
11:41:15.0300 10804  CertPropSvc - ok
11:41:15.0316 10804  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:41:15.0331 10804  circlass - ok
11:41:15.0347 10804  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
11:41:15.0363 10804  CLFS - ok
11:41:15.0409 10804  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:41:15.0409 10804  clr_optimization_v2.0.50727_32 - ok
11:41:15.0425 10804  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:41:15.0425 10804  clr_optimization_v2.0.50727_64 - ok
11:41:15.0472 10804  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:41:15.0472 10804  clr_optimization_v4.0.30319_32 - ok
11:41:15.0487 10804  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:41:15.0487 10804  clr_optimization_v4.0.30319_64 - ok
11:41:15.0487 10804  clwvd - ok
11:41:15.0519 10804  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:41:15.0519 10804  CmBatt - ok
11:41:15.0550 10804  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:41:15.0550 10804  cmdide - ok
11:41:15.0597 10804  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
11:41:15.0597 10804  CNG - ok
11:41:15.0628 10804  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:41:15.0628 10804  Compbatt - ok
11:41:15.0659 10804  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
11:41:15.0659 10804  CompositeBus - ok
11:41:15.0690 10804  COMSysApp - ok
11:41:15.0690 10804  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
11:41:15.0690 10804  crcdisk - ok
11:41:15.0706 10804  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:41:15.0706 10804  CryptSvc - ok
11:41:15.0753 10804  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:41:15.0753 10804  DcomLaunch - ok
11:41:15.0784 10804  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
11:41:15.0784 10804  defragsvc - ok
11:41:15.0815 10804  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:41:15.0815 10804  DfsC - ok
11:41:15.0831 10804  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:41:15.0831 10804  Dhcp - ok
11:41:15.0862 10804  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
11:41:15.0862 10804  discache - ok
11:41:15.0877 10804  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
11:41:15.0877 10804  Disk - ok
11:41:15.0909 10804  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:41:15.0909 10804  Dnscache - ok
11:41:15.0955 10804  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:41:15.0955 10804  dot3svc - ok
11:41:15.0971 10804  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
11:41:15.0971 10804  DPS - ok
11:41:15.0987 10804  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:41:15.0987 10804  drmkaud - ok
11:41:16.0033 10804  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:41:16.0033 10804  DXGKrnl - ok
11:41:16.0049 10804  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
11:41:16.0049 10804  EapHost - ok
11:41:16.0143 10804  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
11:41:16.0158 10804  ebdrv - ok
11:41:16.0189 10804  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
11:41:16.0189 10804  EFS - ok
11:41:16.0236 10804  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:41:16.0236 10804  ehRecvr - ok
11:41:16.0252 10804  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
11:41:16.0267 10804  ehSched - ok
11:41:16.0283 10804  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
11:41:16.0283 10804  elxstor - ok
11:41:16.0299 10804  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:41:16.0299 10804  ErrDev - ok
11:41:16.0345 10804  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
11:41:16.0345 10804  EventSystem - ok
11:41:16.0361 10804  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
11:41:16.0361 10804  exfat - ok
11:41:16.0377 10804  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:41:16.0377 10804  fastfat - ok
11:41:16.0392 10804  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
11:41:16.0392 10804  Fax - ok
11:41:16.0408 10804  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:41:16.0408 10804  fdc - ok
11:41:16.0423 10804  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:41:16.0423 10804  fdPHost - ok
11:41:16.0439 10804  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:41:16.0439 10804  FDResPub - ok
11:41:16.0439 10804  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:41:16.0439 10804  FileInfo - ok
11:41:16.0455 10804  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:41:16.0455 10804  Filetrace - ok
11:41:16.0470 10804  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:41:16.0470 10804  flpydisk - ok
11:41:16.0501 10804  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:41:16.0501 10804  FltMgr - ok
11:41:16.0533 10804  [ 6CD6BB45BD3E0EEF6CE496BF52854FF1 ] FlyUsb          C:\Windows\system32\DRIVERS\FlyUsb.sys
11:41:16.0533 10804  FlyUsb - ok
11:41:16.0579 10804  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
11:41:16.0579 10804  FontCache - ok
11:41:16.0626 10804  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:41:16.0626 10804  FontCache3.0.0.0 - ok
11:41:16.0657 10804  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:41:16.0657 10804  FsDepends - ok
11:41:16.0689 10804  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:41:16.0689 10804  Fs_Rec - ok
11:41:16.0798 10804  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:41:16.0798 10804  fvevol - ok
11:41:16.0860 10804  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
11:41:16.0876 10804  gagp30kx - ok
11:41:16.0876 10804  GameConsoleService - ok
11:41:16.0907 10804  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:41:16.0923 10804  GEARAspiWDM - ok
11:41:16.0954 10804  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
11:41:16.0969 10804  gpsvc - ok
11:41:17.0001 10804  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
11:41:17.0001 10804  hamachi - ok
11:41:17.0016 10804  Hamachi2Svc - ok
11:41:17.0032 10804  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:41:17.0032 10804  hcw85cir - ok
11:41:17.0079 10804  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:41:17.0079 10804  HdAudAddService - ok
11:41:17.0094 10804  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
11:41:17.0094 10804  HDAudBus - ok
11:41:17.0110 10804  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:41:17.0110 10804  HidBatt - ok
11:41:17.0125 10804  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
11:41:17.0125 10804  HidBth - ok
11:41:17.0141 10804  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
11:41:17.0141 10804  HidIr - ok
11:41:17.0172 10804  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
11:41:17.0172 10804  hidserv - ok
11:41:17.0188 10804  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:41:17.0188 10804  HidUsb - ok
11:41:17.0203 10804  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:41:17.0203 10804  hkmsvc - ok
11:41:17.0235 10804  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:41:17.0250 10804  HomeGroupListener - ok
11:41:17.0266 10804  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:41:17.0281 10804  HomeGroupProvider - ok
11:41:17.0313 10804  [ 37965381364B2E106E1DD7D74CDCAA43 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
11:41:17.0313 10804  HP Health Check Service - ok
11:41:17.0359 10804  [ 3DC11A802353401332D49C3CBFBBE5FC ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
11:41:17.0359 10804  HPClientSvc - ok
11:41:17.0406 10804  [ A48A151D3FA7CB032A51453F087221C7 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
11:41:17.0406 10804  HPDrvMntSvc.exe - ok
11:41:17.0422 10804  [ 71BD8A611E0677175D3938C9CEA7339A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
11:41:17.0437 10804  hpqwmiex - ok
11:41:17.0469 10804  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:41:17.0469 10804  HpSAMD - ok
11:41:17.0500 10804  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:41:17.0500 10804  HTTP - ok
11:41:17.0515 10804  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:41:17.0515 10804  hwpolicy - ok
11:41:17.0547 10804  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
11:41:17.0547 10804  i8042prt - ok
11:41:17.0578 10804  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:41:17.0578 10804  iaStorV - ok
11:41:17.0609 10804  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:41:17.0625 10804  idsvc - ok
11:41:17.0656 10804  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
11:41:17.0656 10804  iirsp - ok
11:41:17.0671 10804  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
11:41:17.0671 10804  IKEEXT - ok
11:41:17.0687 10804  IntcAzAudAddService - ok
11:41:17.0703 10804  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
11:41:17.0703 10804  intelide - ok
11:41:17.0718 10804  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:41:17.0718 10804  intelppm - ok
11:41:17.0749 10804  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:41:17.0749 10804  IPBusEnum - ok
11:41:17.0765 10804  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:41:17.0765 10804  IpFilterDriver - ok
11:41:17.0812 10804  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:41:17.0812 10804  iphlpsvc - ok
11:41:17.0843 10804  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:41:17.0843 10804  IPMIDRV - ok
11:41:17.0843 10804  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:41:17.0843 10804  IPNAT - ok
11:41:17.0921 10804  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
11:41:17.0937 10804  iPod Service - ok
11:41:17.0999 10804  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:41:17.0999 10804  IRENUM - ok
11:41:18.0015 10804  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:41:18.0015 10804  isapnp - ok
11:41:18.0077 10804  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:41:18.0093 10804  iScsiPrt - ok
11:41:18.0155 10804  [ 8D990A44B4F2B68E2C56A3724EC3EB84 ] itecir          C:\Windows\system32\DRIVERS\itecir.sys
11:41:18.0155 10804  itecir - ok
11:41:18.0202 10804  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
11:41:18.0202 10804  kbdclass - ok
11:41:18.0249 10804  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
11:41:18.0249 10804  kbdhid - ok
11:41:18.0280 10804  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
11:41:18.0280 10804  KeyIso - ok
11:41:18.0295 10804  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:41:18.0295 10804  KSecDD - ok
11:41:18.0342 10804  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:41:18.0342 10804  KSecPkg - ok
11:41:18.0358 10804  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:41:18.0358 10804  ksthunk - ok
11:41:18.0389 10804  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:41:18.0389 10804  KtmRm - ok
11:41:18.0420 10804  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
11:41:18.0420 10804  LanmanServer - ok
11:41:18.0451 10804  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:41:18.0451 10804  LanmanWorkstation - ok
11:41:18.0467 10804  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:41:18.0467 10804  lltdio - ok
11:41:18.0483 10804  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:41:18.0498 10804  lltdsvc - ok
11:41:18.0498 10804  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:41:18.0514 10804  lmhosts - ok
11:41:18.0529 10804  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
11:41:18.0529 10804  LSI_FC - ok
11:41:18.0529 10804  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
11:41:18.0529 10804  LSI_SAS - ok
11:41:18.0545 10804  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:41:18.0545 10804  LSI_SAS2 - ok
11:41:18.0561 10804  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:41:18.0561 10804  LSI_SCSI - ok
11:41:18.0576 10804  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
11:41:18.0576 10804  luafv - ok
11:41:18.0592 10804  lxct_device - ok
11:41:18.0607 10804  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:41:18.0607 10804  Mcx2Svc - ok
11:41:18.0623 10804  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
11:41:18.0623 10804  megasas - ok
11:41:18.0639 10804  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
11:41:18.0639 10804  MegaSR - ok
11:41:18.0701 10804  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
11:41:18.0701 10804  Microsoft Office Groove Audit Service - ok
11:41:18.0717 10804  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
11:41:18.0717 10804  MMCSS - ok
11:41:18.0748 10804  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
11:41:18.0748 10804  Modem - ok
11:41:18.0763 10804  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:41:18.0763 10804  monitor - ok
11:41:18.0795 10804  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:41:18.0795 10804  mouclass - ok
11:41:18.0826 10804  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:41:18.0826 10804  mouhid - ok
11:41:18.0857 10804  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:41:18.0857 10804  mountmgr - ok
11:41:18.0904 10804  [ E6DB6C61739E18906DC2C4191F6EDEA2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:41:18.0904 10804  MozillaMaintenance - ok
11:41:18.0935 10804  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:41:18.0935 10804  mpio - ok
11:41:18.0951 10804  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:41:18.0951 10804  mpsdrv - ok
11:41:18.0982 10804  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:41:18.0997 10804  MpsSvc - ok
11:41:19.0029 10804  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:41:19.0029 10804  MRxDAV - ok
11:41:19.0060 10804  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:41:19.0060 10804  mrxsmb - ok
11:41:19.0075 10804  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:41:19.0075 10804  mrxsmb10 - ok
11:41:19.0091 10804  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:41:19.0091 10804  mrxsmb20 - ok
11:41:19.0107 10804  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:41:19.0107 10804  msahci - ok
11:41:19.0122 10804  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:41:19.0122 10804  msdsm - ok
11:41:19.0138 10804  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
11:41:19.0153 10804  MSDTC - ok
11:41:19.0169 10804  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:41:19.0169 10804  Msfs - ok
11:41:19.0185 10804  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:41:19.0185 10804  mshidkmdf - ok
11:41:19.0200 10804  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:41:19.0200 10804  msisadrv - ok
11:41:19.0216 10804  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:41:19.0216 10804  MSiSCSI - ok
11:41:19.0216 10804  msiserver - ok
11:41:19.0247 10804  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:41:19.0247 10804  MSKSSRV - ok
11:41:19.0247 10804  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:41:19.0247 10804  MSPCLOCK - ok
11:41:19.0263 10804  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:41:19.0263 10804  MSPQM - ok
11:41:19.0278 10804  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:41:19.0294 10804  MsRPC - ok
11:41:19.0294 10804  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
11:41:19.0294 10804  mssmbios - ok
11:41:19.0309 10804  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:41:19.0309 10804  MSTEE - ok
11:41:19.0325 10804  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
11:41:19.0325 10804  MTConfig - ok
11:41:19.0341 10804  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:41:19.0341 10804  Mup - ok
11:41:19.0372 10804  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
11:41:19.0372 10804  napagent - ok
11:41:19.0403 10804  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:41:19.0403 10804  NativeWifiP - ok
11:41:19.0450 10804  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:41:19.0450 10804  NDIS - ok
11:41:19.0465 10804  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:41:19.0465 10804  NdisCap - ok
11:41:19.0481 10804  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:41:19.0497 10804  NdisTapi - ok
11:41:19.0512 10804  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:41:19.0512 10804  Ndisuio - ok
11:41:19.0543 10804  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:41:19.0543 10804  NdisWan - ok
11:41:19.0559 10804  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:41:19.0559 10804  NDProxy - ok
11:41:19.0575 10804  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:41:19.0575 10804  NetBIOS - ok
11:41:19.0590 10804  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:41:19.0590 10804  NetBT - ok
11:41:19.0606 10804  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
11:41:19.0606 10804  Netlogon - ok
11:41:19.0637 10804  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
11:41:19.0637 10804  Netman - ok
11:41:19.0653 10804  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:19.0653 10804  NetMsmqActivator - ok
11:41:19.0668 10804  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:19.0668 10804  NetPipeActivator - ok
11:41:19.0684 10804  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
11:41:19.0684 10804  netprofm - ok
11:41:19.0715 10804  [ 1982B291DF9833FB3ADC397EBD310A18 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
11:41:19.0715 10804  netr28x - ok
11:41:19.0715 10804  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:19.0731 10804  NetTcpActivator - ok
11:41:19.0731 10804  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:19.0731 10804  NetTcpPortSharing - ok
11:41:19.0746 10804  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
11:41:19.0746 10804  nfrd960 - ok
11:41:19.0762 10804  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:41:19.0762 10804  NlaSvc - ok
11:41:19.0793 10804  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:41:19.0793 10804  Npfs - ok
11:41:19.0809 10804  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
11:41:19.0809 10804  nsi - ok
11:41:19.0824 10804  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:41:19.0840 10804  nsiproxy - ok
11:41:19.0887 10804  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:41:19.0902 10804  Ntfs - ok
11:41:19.0902 10804  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
11:41:19.0902 10804  Null - ok
11:41:19.0933 10804  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:41:19.0933 10804  nvraid - ok
11:41:19.0949 10804  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:41:19.0949 10804  nvstor - ok
11:41:19.0965 10804  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:41:19.0965 10804  nv_agp - ok
11:41:20.0043 10804  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:41:20.0043 10804  odserv - ok
11:41:20.0058 10804  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:41:20.0058 10804  ohci1394 - ok
11:41:20.0105 10804  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:41:20.0105 10804  ose - ok
11:41:20.0121 10804  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:41:20.0136 10804  p2pimsvc - ok
11:41:20.0136 10804  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:41:20.0136 10804  p2psvc - ok
11:41:20.0167 10804  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:41:20.0167 10804  Parport - ok
11:41:20.0183 10804  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:41:20.0183 10804  partmgr - ok
11:41:20.0199 10804  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:41:20.0199 10804  PcaSvc - ok
11:41:20.0214 10804  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
11:41:20.0214 10804  pci - ok
11:41:20.0245 10804  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
11:41:20.0245 10804  pciide - ok
11:41:20.0245 10804  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
11:41:20.0245 10804  pcmcia - ok
11:41:20.0261 10804  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:41:20.0261 10804  pcw - ok
11:41:20.0308 10804  [ 0A098DF98EC8FACAA30BD7DB4C7AEA06 ] PdiService      C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
11:41:20.0308 10804  PdiService - ok
11:41:20.0355 10804  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:41:20.0355 10804  PEAUTH - ok
11:41:20.0433 10804  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:41:20.0433 10804  PerfHost - ok
11:41:20.0495 10804  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
11:41:20.0495 10804  pla - ok
11:41:20.0526 10804  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:41:20.0526 10804  PlugPlay - ok
11:41:20.0542 10804  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:41:20.0542 10804  PNRPAutoReg - ok
11:41:20.0557 10804  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:41:20.0557 10804  PNRPsvc - ok
11:41:20.0573 10804  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:41:20.0589 10804  PolicyAgent - ok
11:41:20.0604 10804  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
11:41:20.0604 10804  Power - ok
11:41:20.0635 10804  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:41:20.0635 10804  PptpMiniport - ok
11:41:20.0651 10804  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
11:41:20.0651 10804  Processor - ok
11:41:20.0698 10804  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:41:20.0713 10804  ProfSvc - ok
11:41:20.0745 10804  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:41:20.0745 10804  ProtectedStorage - ok
11:41:20.0791 10804  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:41:20.0791 10804  Psched - ok
11:41:20.0854 10804  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
11:41:20.0869 10804  ql2300 - ok
11:41:20.0885 10804  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
11:41:20.0885 10804  ql40xx - ok
11:41:20.0901 10804  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
11:41:20.0901 10804  QWAVE - ok
11:41:20.0916 10804  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:41:20.0916 10804  QWAVEdrv - ok
11:41:20.0932 10804  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:41:20.0932 10804  RasAcd - ok
11:41:20.0963 10804  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:41:20.0963 10804  RasAgileVpn - ok
11:41:20.0979 10804  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
11:41:20.0979 10804  RasAuto - ok
11:41:21.0025 10804  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:41:21.0025 10804  Rasl2tp - ok
11:41:21.0072 10804  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
11:41:21.0072 10804  RasMan - ok
11:41:21.0103 10804  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:41:21.0103 10804  RasPppoe - ok
11:41:21.0119 10804  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:41:21.0119 10804  RasSstp - ok
11:41:21.0135 10804  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:41:21.0135 10804  rdbss - ok
11:41:21.0150 10804  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:41:21.0150 10804  rdpbus - ok
11:41:21.0166 10804  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:41:21.0166 10804  RDPCDD - ok
11:41:21.0181 10804  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:41:21.0181 10804  RDPENCDD - ok
11:41:21.0197 10804  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:41:21.0197 10804  RDPREFMP - ok
11:41:21.0228 10804  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:41:21.0228 10804  RDPWD - ok
11:41:21.0259 10804  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:41:21.0259 10804  rdyboost - ok
11:41:21.0275 10804  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:41:21.0275 10804  RemoteAccess - ok
11:41:21.0306 10804  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:41:21.0306 10804  RemoteRegistry - ok
11:41:21.0322 10804  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:41:21.0322 10804  RpcEptMapper - ok
11:41:21.0337 10804  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
11:41:21.0337 10804  RpcLocator - ok
11:41:21.0369 10804  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
11:41:21.0369 10804  RpcSs - ok
11:41:21.0384 10804  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:41:21.0384 10804  rspndr - ok
11:41:21.0431 10804  [ FCAF9C2C9EADF8F397C3350760EF500F ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
11:41:21.0431 10804  RTL8167 - ok
11:41:21.0447 10804  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
11:41:21.0447 10804  SamSs - ok
11:41:21.0462 10804  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:41:21.0462 10804  sbp2port - ok
11:41:21.0478 10804  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:41:21.0478 10804  SCardSvr - ok
11:41:21.0509 10804  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:41:21.0509 10804  scfilter - ok
11:41:21.0540 10804  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
11:41:21.0540 10804  Schedule - ok
11:41:21.0556 10804  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:41:21.0556 10804  SCPolicySvc - ok
11:41:21.0571 10804  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:41:21.0587 10804  SDRSVC - ok
11:41:21.0603 10804  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:41:21.0603 10804  secdrv - ok
11:41:21.0603 10804  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
11:41:21.0618 10804  seclogon - ok
11:41:21.0634 10804  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
11:41:21.0634 10804  SENS - ok
11:41:21.0649 10804  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:41:21.0649 10804  SensrSvc - ok
11:41:21.0665 10804  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:41:21.0665 10804  Serenum - ok
11:41:21.0681 10804  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:41:21.0681 10804  Serial - ok
11:41:21.0712 10804  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
11:41:21.0712 10804  sermouse - ok
11:41:21.0743 10804  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:41:21.0743 10804  SessionEnv - ok
11:41:21.0774 10804  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:41:21.0774 10804  sffdisk - ok
11:41:21.0790 10804  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:41:21.0790 10804  sffp_mmc - ok
11:41:21.0790 10804  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:41:21.0790 10804  sffp_sd - ok
11:41:21.0805 10804  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
11:41:21.0805 10804  sfloppy - ok
11:41:21.0837 10804  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:41:21.0837 10804  SharedAccess - ok
11:41:21.0852 10804  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:41:21.0852 10804  ShellHWDetection - ok
11:41:21.0883 10804  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:41:21.0883 10804  SiSRaid2 - ok
11:41:21.0883 10804  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
11:41:21.0883 10804  SiSRaid4 - ok
11:41:21.0899 10804  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:41:21.0899 10804  Smb - ok
11:41:21.0930 10804  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:41:21.0930 10804  SNMPTRAP - ok
11:41:21.0946 10804  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:41:21.0946 10804  spldr - ok
11:41:21.0977 10804  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
11:41:21.0977 10804  Spooler - ok
11:41:22.0055 10804  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
11:41:22.0071 10804  sppsvc - ok
11:41:22.0071 10804  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:41:22.0071 10804  sppuinotify - ok
11:41:22.0102 10804  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:41:22.0102 10804  srv - ok
11:41:22.0117 10804  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:41:22.0133 10804  srv2 - ok
11:41:22.0133 10804  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:41:22.0149 10804  srvnet - ok
11:41:22.0164 10804  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:41:22.0164 10804  SSDPSRV - ok
11:41:22.0180 10804  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:41:22.0180 10804  SstpSvc - ok
11:41:22.0195 10804  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
11:41:22.0195 10804  stexstor - ok
11:41:22.0227 10804  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
11:41:22.0227 10804  stisvc - ok
11:41:22.0305 10804  [ 1DB60CB3E53E2491D5D6C43C06676CA2 ] Stuffit Archive Name Service C:\Program Files (x86)\Smith Micro\StuffIt 2010\ArcNameService.exe
11:41:22.0320 10804  Stuffit Archive Name Service - ok
11:41:22.0351 10804  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
11:41:22.0351 10804  swenum - ok
11:41:22.0367 10804  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
11:41:22.0383 10804  swprv - ok
11:41:22.0429 10804  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
11:41:22.0445 10804  SysMain - ok
11:41:22.0476 10804  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:41:22.0476 10804  TabletInputService - ok
11:41:22.0492 10804  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:41:22.0492 10804  TapiSrv - ok
11:41:22.0507 10804  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
11:41:22.0507 10804  TBS - ok
11:41:22.0554 10804  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:41:22.0554 10804  Tcpip - ok
11:41:22.0585 10804  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:41:22.0601 10804  TCPIP6 - ok
11:41:22.0632 10804  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:41:22.0632 10804  tcpipreg - ok
11:41:22.0648 10804  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:41:22.0648 10804  TDPIPE - ok
11:41:22.0663 10804  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:41:22.0663 10804  TDTCP - ok
11:41:22.0710 10804  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:41:22.0710 10804  tdx - ok
11:41:22.0804 10804  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
11:41:22.0804 10804  TermDD - ok
11:41:22.0929 10804  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
11:41:22.0944 10804  TermService - ok
11:41:22.0991 10804  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
11:41:22.0991 10804  Themes - ok
11:41:23.0007 10804  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
11:41:23.0007 10804  THREADORDER - ok
11:41:23.0022 10804  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
11:41:23.0022 10804  TrkWks - ok
11:41:23.0053 10804  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:41:23.0053 10804  TrustedInstaller - ok
11:41:23.0085 10804  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:41:23.0085 10804  tssecsrv - ok
11:41:23.0116 10804  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:41:23.0116 10804  TsUsbFlt - ok
11:41:23.0163 10804  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:41:23.0163 10804  tunnel - ok
11:41:23.0194 10804  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
11:41:23.0194 10804  uagp35 - ok
11:41:23.0272 10804  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:41:23.0272 10804  udfs - ok
11:41:23.0287 10804  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:41:23.0303 10804  UI0Detect - ok
11:41:23.0319 10804  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:41:23.0319 10804  uliagpkx - ok
11:41:23.0334 10804  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
11:41:23.0334 10804  umbus - ok
11:41:23.0350 10804  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
11:41:23.0350 10804  UmPass - ok
11:41:23.0365 10804  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
11:41:23.0365 10804  upnphost - ok
11:41:23.0397 10804  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
11:41:23.0397 10804  USBAAPL64 - ok
11:41:23.0428 10804  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
11:41:23.0428 10804  usbaudio - ok
11:41:23.0443 10804  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:41:23.0443 10804  usbccgp - ok
11:41:23.0475 10804  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:41:23.0475 10804  usbcir - ok
11:41:23.0490 10804  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
11:41:23.0490 10804  usbehci - ok
11:41:23.0506 10804  [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
11:41:23.0506 10804  usbfilter - ok
11:41:23.0537 10804  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:41:23.0537 10804  usbhub - ok
11:41:23.0553 10804  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
11:41:23.0553 10804  usbohci - ok
11:41:23.0584 10804  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:41:23.0584 10804  usbprint - ok
11:41:23.0615 10804  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:41:23.0615 10804  usbscan - ok
11:41:23.0631 10804  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:41:23.0631 10804  USBSTOR - ok
11:41:23.0646 10804  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:41:23.0646 10804  usbuhci - ok
11:41:23.0677 10804  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
11:41:23.0677 10804  usbvideo - ok
11:41:23.0677 10804  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
11:41:23.0677 10804  UxSms - ok
11:41:23.0693 10804  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
11:41:23.0693 10804  VaultSvc - ok
11:41:23.0709 10804  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:41:23.0709 10804  vdrvroot - ok
11:41:23.0740 10804  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
11:41:23.0740 10804  vds - ok
11:41:23.0755 10804  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:41:23.0755 10804  vga - ok
11:41:23.0755 10804  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:41:23.0755 10804  VgaSave - ok
11:41:23.0771 10804  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:41:23.0771 10804  vhdmp - ok
11:41:23.0802 10804  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:41:23.0802 10804  viaide - ok
11:41:23.0818 10804  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:41:23.0818 10804  volmgr - ok
11:41:23.0849 10804  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:41:23.0849 10804  volmgrx - ok
11:41:23.0880 10804  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:41:23.0880 10804  volsnap - ok
11:41:23.0896 10804  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
11:41:23.0896 10804  vsmraid - ok
11:41:23.0943 10804  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
11:41:23.0943 10804  VSS - ok
11:41:23.0958 10804  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:41:23.0958 10804  vwifibus - ok
11:41:23.0989 10804  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:41:23.0989 10804  vwififlt - ok
11:41:24.0005 10804  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
11:41:24.0005 10804  vwifimp - ok
11:41:24.0036 10804  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
11:41:24.0036 10804  W32Time - ok
11:41:24.0052 10804  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
11:41:24.0052 10804  WacomPen - ok
11:41:24.0067 10804  WajamUpdater - ok
11:41:24.0114 10804  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:41:24.0114 10804  WANARP - ok
11:41:24.0114 10804  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:41:24.0114 10804  Wanarpv6 - ok
11:41:24.0161 10804  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:41:24.0161 10804  WatAdminSvc - ok
11:41:24.0208 10804  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
11:41:24.0208 10804  wbengine - ok
11:41:24.0223 10804  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:41:24.0223 10804  WbioSrvc - ok
11:41:24.0270 10804  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:41:24.0270 10804  wcncsvc - ok
11:41:24.0286 10804  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:41:24.0286 10804  WcsPlugInService - ok
11:41:24.0317 10804  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
11:41:24.0317 10804  Wd - ok
11:41:24.0348 10804  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:41:24.0348 10804  Wdf01000 - ok
11:41:24.0364 10804  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:41:24.0364 10804  WdiServiceHost - ok
11:41:24.0364 10804  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:41:24.0364 10804  WdiSystemHost - ok
11:41:24.0379 10804  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
11:41:24.0395 10804  WebClient - ok
11:41:24.0395 10804  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:41:24.0395 10804  Wecsvc - ok
11:41:24.0411 10804  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:41:24.0411 10804  wercplsupport - ok
11:41:24.0426 10804  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:41:24.0442 10804  WerSvc - ok
11:41:24.0457 10804  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:41:24.0457 10804  WfpLwf - ok
11:41:24.0473 10804  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:41:24.0473 10804  WIMMount - ok
11:41:24.0489 10804  WinDefend - ok
11:41:24.0504 10804  WinHttpAutoProxySvc - ok
11:41:24.0551 10804  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:41:24.0551 10804  Winmgmt - ok
11:41:24.0598 10804  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
11:41:24.0598 10804  WinRM - ok
11:41:24.0645 10804  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:41:24.0645 10804  WinUsb - ok
11:41:24.0691 10804  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:41:24.0707 10804  Wlansvc - ok
11:41:24.0847 10804  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:41:24.0863 10804  wlidsvc - ok
11:41:24.0879 10804  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:41:24.0879 10804  WmiAcpi - ok
11:41:24.0910 10804  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:41:24.0910 10804  wmiApSrv - ok
11:41:24.0941 10804  WMPNetworkSvc - ok
11:41:24.0957 10804  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:41:24.0957 10804  WPCSvc - ok
11:41:24.0988 10804  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:41:24.0988 10804  WPDBusEnum - ok
11:41:25.0019 10804  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:41:25.0019 10804  ws2ifsl - ok
11:41:25.0035 10804  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
11:41:25.0035 10804  wscsvc - ok
11:41:25.0035 10804  WSearch - ok
11:41:25.0113 10804  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:41:25.0128 10804  wuauserv - ok
11:41:25.0144 10804  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:41:25.0144 10804  WudfPf - ok
11:41:25.0175 10804  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:41:25.0175 10804  WUDFRd - ok
11:41:25.0191 10804  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:41:25.0191 10804  wudfsvc - ok
11:41:25.0222 10804  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:41:25.0222 10804  WwanSvc - ok
11:41:25.0237 10804  ================ Scan global ===============================
11:41:25.0253 10804  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:41:25.0269 10804  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:41:25.0284 10804  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:41:25.0300 10804  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:41:25.0315 10804  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:41:25.0315 10804  [Global] - ok
11:41:25.0315 10804  ================ Scan MBR ==================================
11:41:25.0331 10804  [ ACADBD9F19450A7D3224BB0DF369C8CA ] \Device\Harddisk0\DR0
11:41:25.0596 10804  \Device\Harddisk0\DR0 - ok
11:41:25.0596 10804  ================ Scan VBR ==================================
11:41:25.0596 10804  [ AC93F14E05368115CC818E4CB3EE8F5B ] \Device\Harddisk0\DR0\Partition1
11:41:25.0612 10804  \Device\Harddisk0\DR0\Partition1 - ok
11:41:25.0627 10804  [ F428523DAF09D0FEAD40223786DCADF0 ] \Device\Harddisk0\DR0\Partition2
11:41:25.0627 10804  \Device\Harddisk0\DR0\Partition2 - ok
11:41:25.0659 10804  [ 1ACC48A233D21C8C93972836110139FD ] \Device\Harddisk0\DR0\Partition3
11:41:25.0659 10804  \Device\Harddisk0\DR0\Partition3 - ok
11:41:25.0659 10804  ============================================================
11:41:25.0659 10804  Scan finished
11:41:25.0659 10804  ============================================================
11:41:25.0674 5480  Detected object count: 0
11:41:25.0674 5480  Actual detected object count: 0
11:41:31.0431 6924  Deinitialize success
 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 08 August 2013 - 01:13 PM

Finish the Avira scan

then run this and tell me how it is.

Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 08 August 2013 - 02:32 PM

 AdwCleaner v2.306 - Logfile created 08/08/2013 at 15:25:52
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Lorna - LORNA-HP
# Boot Mode : Normal
# Running from : C:\Users\Lorna\Downloads\AdwCleaner (2).exe
# Option [Delete]

***** [Services] *****

Stopped & Deleted : WajamUpdater

***** [Files / Folders] *****

File Deleted : C:\END
File Deleted : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\searchplugins\Askcom.xml
File Deleted : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\searchplugins\Babylon.xml
File Deleted : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\searchplugins\Conduit.xml
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\DnsBasic
Folder Deleted : C:\ProgramData\DnsBasic
Folder Deleted : C:\Users\Carlos\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Lorna\AppData\Local\APN
Folder Deleted : C:\Users\Lorna\AppData\Local\AskToolbar
Folder Deleted : C:\Users\Lorna\AppData\Local\Conduit
Folder Deleted : C:\Users\Lorna\AppData\Local\Temp\CT3291325
Folder Deleted : C:\Users\Lorna\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Lorna\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Lorna\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\CT3291325
Folder Deleted : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\extensions\{0134af61-7a0c-4649-aeca-90d776060cb3}
Folder Deleted : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\extensions\toolbar@ask.com
Folder Deleted : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\Smartbar
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\AskToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\PrivitizeVPNInstallDates
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3291325
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D55DAA5-04AC-4036-B0BE-DA81EE9676CD}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{58CBF821-A0C7-4AE8-9430-77DD1AF38E99}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{72BCBFF7-2837-4CA0-B3B5-3DAED7F54601}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{824125FD-7732-4DA2-9277-3A7D0A0A0813}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\InstallIQ
Key Deleted : HKLM\Software\Wajam
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{05366194-3126-4601-AC1A-DDE573E093DC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{061F450C-37B9-4330-9235-0F25D9F75B33}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{26249267-15F4-4DA3-8247-C5A78E4FA918}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{39B217B4-8C69-4E45-A8DC-8CC4DAD3CF0A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3CB4CE45-8849-4638-9226-D6B615A15827}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{43AB7B5D-4C40-4103-A549-7002A116A7D5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{996ED20F-A740-47A2-A7EF-9620D422BB4E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{061F450C-37B9-4330-9235-0F25D9F75B33}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F994E0D9-8335-48F1-99C2-A712C21F8D5F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry is clean.

-\\ Mozilla Firefox v [Unable to get version]

File : C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\prefs.js

C:\Users\Lorna\AppData\Roaming\Mozilla\Firefox\Profiles\z3w5rph0.default-1359167182254\user.js ... Deleted !

Deleted : user_pref("CT3291325.1000082.isPlayDisplay", "true");
Deleted : user_pref("CT3291325.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Deleted : user_pref("CT3291325.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3291325.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Deleted : user_pref("CT3291325.FF19Solved", "true");
Deleted : user_pref("CT3291325.FirstTime", "true");
Deleted : user_pref("CT3291325.FirstTimeFF3", "true");
Deleted : user_pref("CT3291325.LAST_CLIENT_STATS_SUBMIT_2.enc", "MTM3NTcyOTI4Mw==");
Deleted : user_pref("CT3291325.LOCAL_COOKIE_STATS_LAST_SUBMIT_6.enc", "MTM3NTcyOTI5NQ==");
Deleted : user_pref("CT3291325.LOCAL_COOKIE_STATS_STATS_SITE_IRRELEVANT.enc", "Nw==");
Deleted : user_pref("CT3291325.LOCAL_COOKIE_STATS_STATS_SITE_SUPPORTED.enc", "MQ==");
Deleted : user_pref("CT3291325.LOCAL_COOKIE_THROTTLE_BASEadd_stats|0|LOCAL_COOKIE_STATS_STATS_SITE_IRRELEVANT.[...]
Deleted : user_pref("CT3291325.LOCAL_COOKIE_THROTTLE_BASEadd_stats|0|LOCAL_COOKIE_STATS_STATS_SITE_SUPPORTED.e[...]
Deleted : user_pref("CT3291325.PG_ENABLE", "dHJ1ZQ==");
Deleted : user_pref("CT3291325.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT329[...]
Deleted : user_pref("CT3291325.UserID", "UN35094395283235017");
Deleted : user_pref("CT3291325.acp_personal.appstate.enc", "ZW5hYmxl");
Deleted : user_pref("CT3291325.addressBarTakeOverEnabledInHidden", "true");
Deleted : user_pref("CT3291325.autoDisableScopes", -1);
Deleted : user_pref("CT3291325.browser.search.defaultthis.engineName", "true");
Deleted : user_pref("CT3291325.cbfirsttime.enc", "TW9uIEF1ZyAwNSAyMDEzIDExOjMxOjI4IEdNVC0wNDAwIChFYXN0ZXJuIFN0[...]
Deleted : user_pref("CT3291325.countryCode", "US");
Deleted : user_pref("CT3291325.defaultSearch", "true");
Deleted : user_pref("CT3291325.embeddedsData", "[{\"appId\":\"130075605210846225\",\"apiPermissions\":{\"cross[...]
Deleted : user_pref("CT3291325.enableAlerts", "true");
Deleted : user_pref("CT3291325.enableSearchFromAddressBar", "true");
Deleted : user_pref("CT3291325.firstTimeDialogOpened", "true");
Deleted : user_pref("CT3291325.fixPageNotFoundError", "true");
Deleted : user_pref("CT3291325.fixPageNotFoundErrorByUser", "true");
Deleted : user_pref("CT3291325.fixPageNotFoundErrorInHidden", "true");
Deleted : user_pref("CT3291325.fixUrls", true);
Deleted : user_pref("CT3291325.fullUserID", "UN35094395283235017.IN.20130805073457");
Deleted : user_pref("CT3291325.homepageuserchanged", true);
Deleted : user_pref("CT3291325.installDate", "05/08/2013 07:34:57");
Deleted : user_pref("CT3291325.installId", "stub.exe");
Deleted : user_pref("CT3291325.installSessionId", "{B5AFE58D-AA16-4D39-905B-8EC58E503B93}");
Deleted : user_pref("CT3291325.installSp", "TRUE");
Deleted : user_pref("CT3291325.installType", "conduitnsisintegration");
Deleted : user_pref("CT3291325.installUsage", "2013-08-05T18:20:19.4237612+03:00");
Deleted : user_pref("CT3291325.installUsageEarly", "2013-08-05T18:20:16.9433135+03:00");
Deleted : user_pref("CT3291325.installerVersion", "1.5.4.5");
Deleted : user_pref("CT3291325.isCheckedStartAsHidden", true);
Deleted : user_pref("CT3291325.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3291325.isFirstTimeToolbarLoading", "false");
Deleted : user_pref("CT3291325.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Deleted : user_pref("CT3291325.keyword", "true");
Deleted : user_pref("CT3291325.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Deleted : user_pref("CT3291325.lastVersion", "10.16.9.506");
Deleted : user_pref("CT3291325.mam_gk_appStateReportTime.enc", "MTM3NTgwOTQ1NjUzNw==");
Deleted : user_pref("CT3291325.mam_gk_appState_ACplus.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_CouponBuddy.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_Discover.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_Easytobook.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_Easytobook_targeted.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_Find-a-Pro.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_PiclickV2-WebSearch.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_PriceGong.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appState_WindowShopper.enc", "b24=");
Deleted : user_pref("CT3291325.mam_gk_appsData.enc", "eyJhcHBzIjpbeyJpZCI6IlByaWNlR29uZyIsInVybCI6Imh0dHA6Ly9w[...]
Deleted : user_pref("CT3291325.mam_gk_appsDefaultEnabled.enc", "bnVsbA==");
Deleted : user_pref("CT3291325.mam_gk_calledSetupService.enc", "MQ==");
Deleted : user_pref("CT3291325.mam_gk_configuration.enc", "eyJjb25maWd1cmF0aW9uIjpbeyJpZCI6IlBpY2xpY2tWMi1XZWJ[...]
Deleted : user_pref("CT3291325.mam_gk_currentVersion.enc", "MS45LjAuNA==");
Deleted : user_pref("CT3291325.mam_gk_existingUsersRecoveryDone.enc", "MQ==");
Deleted : user_pref("CT3291325.mam_gk_first_time.enc", "MQ==");
Deleted : user_pref("CT3291325.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Deleted : user_pref("CT3291325.mam_gk_lastLoginTime.enc", "MTM3NTgwOTQ1NjcyOQ==");
Deleted : user_pref("CT3291325.mam_gk_localization.enc", "eyJnYWRnZXRDb250ZW50UG9saWN5Ijp7IlRleHQiOiJDb250ZW50[...]
Deleted : user_pref("CT3291325.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3291325.mam_gk_settings1.9.0.4.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVyd[...]
Deleted : user_pref("CT3291325.mam_gk_showWelcomeGadget.enc", "ZmFsc2U=");
Deleted : user_pref("CT3291325.mam_gk_userId.enc", "NTcwOGVhMmEtNGE1NC00YWU1LWE3MjQtMjAwOWI0NTFiZmVh");
Deleted : user_pref("CT3291325.migrateAppsAndComponents", true);
Deleted : user_pref("CT3291325.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Deleted : user_pref("CT3291325.openThankYouPage", "false");
Deleted : user_pref("CT3291325.openUninstallPage", "true");
Deleted : user_pref("CT3291325.originalHomepage", "hxxp://search.avira.com/?l=dis&o=APN10266&gct=hp&dc=US&loca[...]
Deleted : user_pref("CT3291325.originalSearchAddressUrl", "");
Deleted : user_pref("CT3291325.originalSearchEngine", "Ask.com");
Deleted : user_pref("CT3291325.originalSearchEngineName", "");
Deleted : user_pref("CT3291325.price-gong.isManagedApp", "true");
Deleted : user_pref("CT3291325.revertSettingsEnabled", "false");
Deleted : user_pref("CT3291325.search.searchAppId", "130075605210846225");
Deleted : user_pref("CT3291325.search.searchCount", "0");
Deleted : user_pref("CT3291325.searchFromAddressBarEnabledByUser", "true");
Deleted : user_pref("CT3291325.searchInNewTabEnabledByUser", "true");
Deleted : user_pref("CT3291325.searchInNewTabEnabledInHidden", "true");
Deleted : user_pref("CT3291325.searchRevert", "false");
Deleted : user_pref("CT3291325.searchSuggestEnabledByUser", "true");
Deleted : user_pref("CT3291325.searchUserMode", "2");
Deleted : user_pref("CT3291325.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3291325.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Deleted : user_pref("CT3291325.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Deleted : user_pref("CT3291325.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Deleted : user_pref("CT3291325.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3291325.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3291325.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Deleted : user_pref("CT3291325.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data[...]
Deleted : user_pref("CT3291325.serviceLayer_services_Configuration_lastUpdate", "1375809573616");
Deleted : user_pref("CT3291325.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1375716020881");
Deleted : user_pref("CT3291325.serviceLayer_services_appTracking_lastUpdate", "1375716679195");
Deleted : user_pref("CT3291325.serviceLayer_services_appsMetadata_lastUpdate", "1375732942971");
Deleted : user_pref("CT3291325.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1375716020686");
Deleted : user_pref("CT3291325.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1375716018[...]
Deleted : user_pref("CT3291325.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1375716021273")[...]
Deleted : user_pref("CT3291325.serviceLayer_services_login_10.16.9.6_lastUpdate", "1375809573498");
Deleted : user_pref("CT3291325.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1375716021155");
Deleted : user_pref("CT3291325.serviceLayer_services_searchAPI_lastUpdate", "1375809573533");
Deleted : user_pref("CT3291325.serviceLayer_services_serviceMap_lastUpdate", "1375809573192");
Deleted : user_pref("CT3291325.serviceLayer_services_toolbarContextMenu_lastUpdate", "1375716020313");
Deleted : user_pref("CT3291325.serviceLayer_services_toolbarSettings_lastUpdate", "1375809573469");
Deleted : user_pref("CT3291325.serviceLayer_services_translation_lastUpdate", "1375809573433");
Deleted : user_pref("CT3291325.settingsINI", true);
Deleted : user_pref("CT3291325.shouldFirstTimeDialog", "false");
Deleted : user_pref("CT3291325.showToolbarPermission", "false");
Deleted : user_pref("CT3291325.smartbar.CTID", "CT3291325");
Deleted : user_pref("CT3291325.smartbar.Uninstall", "0");
Deleted : user_pref("CT3291325.smartbar.homepage", "true");
Deleted : user_pref("CT3291325.smartbar.toolbarName", "KeyBar 1.12 ");
Deleted : user_pref("CT3291325.startPage", "true");
Deleted : user_pref("CT3291325.toolbarBornServerTime", "5-8-2013");
Deleted : user_pref("CT3291325.toolbarCurrentServerTime", "6-8-2013");
Deleted : user_pref("CT3291325.toolbarLoginClientTime", "Mon Aug 05 2013 11:20:20 GMT-0400 (Eastern Standard T[...]
Deleted : user_pref("CT3291325.url_history0001.enc", "aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbTo6OmNsaWNraGFuZGxlcjo6OjEz[...]
Deleted : user_pref("CT3291325.versionFromInstaller", "10.16.9.6");
Deleted : user_pref("CT3291325.xpeMode", "3");
Deleted : user_pref("CT3291325_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Deleted : user_pref("Smartbar.ConduitHomepagesList", "");
Deleted : user_pref("Smartbar.ConduitSearchEngineList", "KeyBar 1.12 Customized Web Search");
Deleted : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3291325[...]
Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3291325");
Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "KeyBar 1.12 Customized Web Search");
Deleted : user_pref("browser.search.defaultthis.engineName", "KeyBar 1.12 Customized Web Search");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3291325&CUI[...]
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.selectedEngine", "KeyBar 1.12 Customized Web Search");
Deleted : user_pref("extensions.asktb.InstallDir", "C:\\Program Files (x86)\\Ask.com\\");
Deleted : user_pref("extensions.asktb.apn_dbr", "Null_64_9.10.9200.16576");
Deleted : user_pref("extensions.asktb.autofill-text-highlight-enabled", true);
Deleted : user_pref("extensions.asktb.cbid", "^AGX");
Deleted : user_pref("extensions.asktb.config-updated", true);
Deleted : user_pref("extensions.asktb.cr-o", "APN10266");
Deleted : user_pref("extensions.asktb.crumb", "2013.05.15+19.40.42-toolbar002iad-US-V2VzdCBQYWxtIEJlYWNoLEZMLF[...]
Deleted : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://avira.ask.com/web?q={query}&o={o}&l={[...]
Deleted : user_pref("extensions.asktb.domain", "avira.ask.com");
Deleted : user_pref("extensions.asktb.domainName", "avira.ask.com");
Deleted : user_pref("extensions.asktb.dtid", "^YYYYYY^YY^US");
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");
Deleted : user_pref("extensions.asktb.fresh-install", false);
Deleted : user_pref("extensions.asktb.guid", "6664e7bd-a327-4ba0-b07e-59acc8629374");
Deleted : user_pref("extensions.asktb.hpr", "YES");
Deleted : user_pref("extensions.asktb.hxxp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com[...]
Deleted : user_pref("extensions.asktb.if", "first");
Deleted : user_pref("extensions.asktb.keyword-toggled-in-session", false);
Deleted : user_pref("extensions.asktb.l", "dis");
Deleted : user_pref("extensions.asktb.last-config-req", "1375809451719");
Deleted : user_pref("extensions.asktb.last-search-timestamp", "1373836626595");
Deleted : user_pref("extensions.asktb.locale", "en_US");
Deleted : user_pref("extensions.asktb.localePref", true);
Deleted : user_pref("extensions.asktb.location", "West Palm Beach,FL,United States");
Deleted : user_pref("extensions.asktb.new-tab-opt-out", true);
Deleted : user_pref("extensions.asktb.o", "APN10266");
Deleted : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Deleted : user_pref("extensions.asktb.qsrc", "2871");
Deleted : user_pref("extensions.asktb.r", "4");
Deleted : user_pref("extensions.asktb.sa", "YES");
Deleted : user_pref("extensions.asktb.saguid", "39CFA1F0-ACAC-4BC2-BF20-530BB98C2804");
Deleted : user_pref("extensions.asktb.search-history-queries", "zoo games||dino dan eggs gamas||nick jr||nick [...]
Deleted : user_pref("extensions.asktb.search-plugin-suggestions-url", "hxxp://ss.websearch.ask.com/query?qsrc=[...]
Deleted : user_pref("extensions.asktb.search-suggestions-enabled", true);
Deleted : user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", false);
Deleted : user_pref("extensions.asktb.slwo", "1");
Deleted : user_pref("extensions.asktb.socialmini-first", true);
Deleted : user_pref("extensions.asktb.socialmini-interval", "1200000");
Deleted : user_pref("extensions.asktb.socialmini-max-char-ticker", "33");
Deleted : user_pref("extensions.asktb.socialmini-max-items", "30");
Deleted : user_pref("extensions.asktb.socialmini-native-on", true);
Deleted : user_pref("extensions.asktb.socialmini-speed", "5000");
Deleted : user_pref("extensions.asktb.themeid", "");
Deleted : user_pref("extensions.asktb.timeinstalled", "5/15/2013 10:41:21 PM");
Deleted : user_pref("extensions.asktb.to", "");
Deleted : user_pref("extensions.asktb.v", "3.15.24.100015");
Deleted : user_pref("extensions.asktb.version", "5.15.24.42066");
Deleted : user_pref("extensions.enabledAddons", "toolbar%40ask.com:3.15.24.100015,%7B0134af61-7a0c-4649-aeca-9[...]
Deleted : user_pref("extensions.wajam.affiliate_id", "3221");
Deleted : user_pref("extensions.wajam.firstrun", "false");
Deleted : user_pref("extensions.wajam.log_send_info", "false");
Deleted : user_pref("extensions.wajam.mappingListJsonString", "{\"version\":\"0.21087\",\"supported_sites\":{\[...]
Deleted : user_pref("extensions.wajam.no_trace", "false");
Deleted : user_pref("extensions.wajam.server_current_mapping_version", "0.21087");
Deleted : user_pref("extensions.wajam.trace_log", "1375716008076 - processInstallationUpgrade - version set to[...]
Deleted : user_pref("extensions.wajam.unique_id", "519BC77B719021D1FC77B6FF1E2663F8");
Deleted : user_pref("extensions.wajam.user_current_mapping_version", "0");
Deleted : user_pref("extensions.wajam.version", "1.26");
Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3291325&SearchSource=2&CU[...]
Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3291325");
Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3291325&CUI=UN350943952[...]
Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3291325");
Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3291325");
Deleted : user_pref("smartbar.machineId", "C0BTSJ/UHKJYWO84L5OD59OQ9QE11CZOSZVICDLDBKXGC57069B/BKWFLEF3JJKGF32[...]
Deleted : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3291325&CUI=UN350943952832[...]

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Lorna\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.24] : icon_url = "hxxp://www.ask.com/favicon.ico",
Deleted [l.27] : keyword = "ask.com",
Deleted [l.31] : search_url = "hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=AVR-4&o=APN10266&locale=e[...]
Deleted [l.32] : suggest_url = "hxxp://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms[...]
Deleted [l.2320] : homepage = "hxxp://search.conduit.com/?ctid=CT3291325&SearchSource=48&CUI=UN41553992352554628&UM[...]
Deleted [l.2548] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3291325&SearchSource=48&CUI[...]

*************************

AdwCleaner[S1].txt - [25929 octets] - [18/04/2013 18:48:48]
AdwCleaner[S2].txt - [2352 octets] - [02/05/2013 10:29:38]
AdwCleaner[S3].txt - [16157 octets] - [15/05/2013 10:14:28]
AdwCleaner[S4].txt - [31215 octets] - [08/08/2013 15:25:52]

########## EOF - C:\AdwCleaner[S4].txt - [31276 octets] ##########



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 08 August 2013 - 08:17 PM

OK, we should do these 2 quick ones then .

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
  • Install your game.
How is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 09 August 2013 - 07:47 PM

When opening internet explorer a message appears in a box that reads below:

 

Run DLL

There was a problem starting C:\Program files (x86)\conduit\CT3291325\plugins\TBVerifier.dll

The specified module could not be found



#10 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 09 August 2013 - 07:58 PM

What should I do with six quarantined viruses in antivirus "Avira". They are just sitting there.

 

Thanks



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 11 August 2013 - 07:41 PM

Hello, the quarantined files can be left there or deleted.
Read this explanation. Clean, Quarantine, or Delete?
 
 

Its not unusual to receive such an error after using specialized fix tools.

A "Cannot find...", "Could not run...", "Error loading... or "specific module could not be found" message is usually related to malware that was set to run at startup but has been deleted. Windows is trying to load this file but cannot locate it since the file was mostly likely removed during an anti-virus or anti-malware scan. However, an associated orphaned registry entry remains and is telling Windows to load the file when you boot up. Since the file no longer exists, Windows will display an error message. You need to remove this registry entry so Windows stops searching for the file when it loads.

To resolve this, download Autoruns, search for the related entry and then delete it.

Create a new folder on your hard drive called AutoRuns (C:\AutoRuns) and extract (unzip) the file there. (click here if you're not sure how to do this.)
Open the folder and double-click on autoruns.exe to launch it.
Please be patient as it scans and populates the entries.
When done scanning, it will say Ready at the bottom.
Scroll through the list and look for a startup entry related to the file(s) in the error message. -->>> TBVerifier.dll
Right-click on the entry and choose delete.
Reboot your computer and see if the startup error returns.

Edited by boopme, 12 August 2013 - 01:53 PM.
Repair Autoruns link

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 12 August 2013 - 10:53 AM

Good Morning,

Autoruns page is no longer available. Is there another download?

 

Thanks



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 12 August 2013 - 01:51 PM

http://technet.microsoft.com/en-us/sysinternals/bb963902
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 LTre

LTre
  • Topic Starter

  • Members
  • 90 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:15 AM

Posted 12 August 2013 - 07:18 PM

I don't understand. There are files highlighted in purple, pink, and yellow. When you say related to files in the error message TBVerifier.dlll

I don't see anything with that included in the file name. I don't know what I'm looking for.



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 12 August 2013 - 08:08 PM

The TBVerifier.dll does not appear in the log, as that dll should be the corrupt item.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users