Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected? Not sure.


  • Please log in to reply
7 replies to this topic

#1 bourgja2

bourgja2

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:11:26 AM

Posted 29 August 2013 - 05:40 PM

Hello, I recently had a virus which seems to be removed.  However, my computer is running slow and pages are loading slowly, so I am not sure if I might be infected.  I am hoping someone here will help me to find out.  Thanks!


Edited by hamluis, 30 August 2013 - 05:13 AM.
No logs, moved from MRL to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:26 AM

Posted 02 September 2013 - 09:58 PM

Hello and welcome... Lets look a bot further and see.
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
 
 
Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • >>>
  • Last run ESET.
    • Hold down Control and click on this link to open ESET OnlineScan in a new window.
    • Click the esetonlinebtn.png button.
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
    • Check "YES, I accept the Terms of Use."
    • Click the Start button.
    • Accept any security warnings from your browser.
    • Under scan settings, check "Scan Archives" and "Remove found threats"
    • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    • When the scan completes, click List Threats
    • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    • Click the Back button.
    • Click the Finish button.
    • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 bourgja2

bourgja2
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:11:26 AM

Posted 03 September 2013 - 08:50 PM

Okay, here are three of the four reports that you requested.  The ESET one is still running and I will post it tomorrow morning.  (P.S.--I did not "clean" with ADW Cleaner, just scanned):

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Administrator (administrator) on 03-09-2013 at 20:50:37
Running from "C:\Documents and Settings\Administrator\My Documents"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Broadcom NetXtreme Gigabit Ethernet = Local Area Connection (Connected)

# ----------------------------------
# Interface IP Configuration        
# ----------------------------------
pushd interface ip

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

popd
# End of interface IP configuration

Windows IP Configuration        Host Name . . . . . . . . . . . . : HP26911982631        Primary Dns Suffix  . . . . . . . :         Node Type . . . . . . . . . . . . : Unknown        IP Routing Enabled. . . . . . . . : No        WINS Proxy Enabled. . . . . . . . : No        DNS Suffix Search List. . . . . . : BelkinEthernet adapter Local Area Connection:        Connection-specific DNS Suffix  . : Belkin        Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet        Physical Address. . . . . . . . . : 00-1E-0B-3C-00-D5        Dhcp Enabled. . . . . . . . . . . : Yes        Autoconfiguration Enabled . . . . : Yes        IP Address. . . . . . . . . . . . : 192.168.2.2        Subnet Mask . . . . . . . . . . . : 255.255.255.0        Default Gateway . . . . . . . . . : 192.168.2.1        DHCP Server . . . . . . . . . . . : 192.168.2.1        DNS Servers . . . . . . . . . . . : 192.168.2.1        Lease Obtained. . . . . . . . . . : Tuesday, September 03, 2013 8:48:04 PM        Lease Expires . . . . . . . . . . : Monday, January 18, 2038 11:14:07 PMServer:  UnKnown
Address:  192.168.2.1

Name:    google.com
Addresses:  74.125.225.39, 74.125.225.40, 74.125.225.41, 74.125.225.46
   74.125.225.32, 74.125.225.33, 74.125.225.34, 74.125.225.35, 74.125.225.36
   74.125.225.37, 74.125.225.38

Pinging google.com [74.125.225.72] with 32 bytes of data:Reply from 74.125.225.72: bytes=32 time=34ms TTL=54Reply from 74.125.225.72: bytes=32 time=34ms TTL=54Ping statistics for 74.125.225.72:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 34ms, Maximum = 34ms, Average = 34msServer:  UnKnown
Address:  192.168.2.1

Name:    yahoo.com
Addresses:  98.139.183.24, 206.190.36.45, 98.138.253.109

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:Reply from 206.190.36.45: bytes=32 time=104ms TTL=47Reply from 206.190.36.45: bytes=32 time=103ms TTL=47Ping statistics for 206.190.36.45:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 103ms, Maximum = 104ms, Average = 103msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 1e 0b 3c 00 d5 ...... Broadcom NetXtreme Gigabit Ethernet
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1     192.168.2.2   20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
      192.168.2.0    255.255.255.0      192.168.2.2     192.168.2.2   20
      192.168.2.2  255.255.255.255        127.0.0.1       127.0.0.1   20
    192.168.2.255  255.255.255.255      192.168.2.2     192.168.2.2   20
        224.0.0.0        240.0.0.0      192.168.2.2     192.168.2.2   20
  255.255.255.255  255.255.255.255      192.168.2.2     192.168.2.2   1
Default Gateway:       192.168.2.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/03/2013 06:21:49 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (09/02/2013 00:25:24 PM) (Source: Application Error) (User: )
Description: Fault bucket 739892988.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (09/02/2013 00:25:20 PM) (Source: Application Error) (User: )
Description: Faulting application rundll32.exe, version 5.1.2600.5512, faulting module unknown, version 0.0.0.0, fault address 0x7fb72c64.
Processing media-specific event for [rundll32.exe!ws!]

Error: (09/02/2013 00:17:24 PM) (Source: Application Error) (User: )
Description: Fault bucket 739892988.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (09/02/2013 00:17:23 PM) (Source: Application Error) (User: )
Description: Faulting application rundll32.exe, version 5.1.2600.5512, faulting module unknown, version 0.0.0.0, fault address 0x7fb72c64.
Processing media-specific event for [rundll32.exe!ws!]

Error: (08/30/2013 10:32:03 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/30/2013 10:14:40 PM) (Source: Application Hang) (User: )
Description: Fault bucket 1180947459.

Error: (08/30/2013 10:14:38 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/30/2013 10:10:11 PM) (Source: Application Hang) (User: )
Description: Fault bucket 1180947459.

Error: (08/30/2013 10:09:59 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

System errors:
=============
Error: (09/03/2013 08:48:35 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (09/03/2013 05:16:18 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (09/02/2013 07:26:04 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (09/02/2013 03:55:26 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (09/02/2013 11:47:34 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (09/01/2013 07:11:04 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (09/01/2013 06:32:56 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (09/01/2013 11:37:22 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (08/31/2013 09:56:01 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (08/31/2013 06:41:01 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Microsoft Office Sessions:
=========================
Error: (09/03/2013 06:21:49 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (09/02/2013 00:25:24 PM) (Source: Application Error)(User: )
Description: 739892988

Error: (09/02/2013 00:25:20 PM) (Source: Application Error)(User: )
Description: rundll32.exe5.1.2600.5512unknown0.0.0.07fb72c64

Error: (09/02/2013 00:17:24 PM) (Source: Application Error)(User: )
Description: 739892988

Error: (09/02/2013 00:17:23 PM) (Source: Application Error)(User: )
Description: rundll32.exe5.1.2600.5512unknown0.0.0.07fb72c64

Error: (08/30/2013 10:32:03 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/30/2013 10:14:40 PM) (Source: Application Hang)(User: )
Description: 1180947459

Error: (08/30/2013 10:14:38 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/30/2013 10:10:11 PM) (Source: Application Hang)(User: )
Description: 1180947459

Error: (08/30/2013 10:09:59 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

=========================== Installed Programs ============================

7-Zip 9.20
Adobe AIR (Version: 2.7.0.19480)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.7.700.202)
Adobe Reader 9.5.5 (Version: 9.5.5)
Amazon Cloud Player (Version: 1.1.0.337)
Apple Software Update (Version: 2.0.2.92)
ATI - Software Uninstall Utility (Version: 6.14.10.1014)
ATI Control Panel (Version: 6.14.10.5190)
ATI Display Driver (Version: 8.261.4-060722a-035058C-HP)
ATI Problem Report Wizard (Version: 8.10)
AVG Free 9.0
Broadcom Management Programs (Version: 9.02.06)
Broadcom TPM Driver Installer (Version: 8.05.04)
BufferChm (Version: 70.0.170.000)
Canon Camera Access Library (Version: 8.4.0.1)
Canon Camera Support Core Library (Version: 7.3.1.6)
Canon G.726 WMP-Decoder (Version: 1.1.0.4)
Canon MovieEdit Task for ZoomBrowser EX (Version: 2.6.0.4)
Canon RAW Image Task for ZoomBrowser EX (Version: 0.9.3.9)
Canon Utilities CameraWindow (Version: 7.1.0.2)
Canon Utilities CameraWindow DC (Version: 7.1.0.7)
Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX (Version: 5.4.5.17)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.4.2.16)
Canon Utilities EOS Utility (Version: 1.1.0.8)
Canon Utilities MyCamera (Version: 6.4.0.5)
Canon Utilities MyCamera DC (Version: 7.0.1.8)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.7.1.9)
Canon Utilities ZoomBrowser EX (Version: 6.1.0.20)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.1.0.8)
CCleaner (Version: 3.12)
Cisco WebEx Meetings
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CP_CalendarTemplates1 (Version: 70.0.170.000)
cp_OnlineProjectsConfig (Version: 70.0.170.000)
CP_Package_Basic1 (Version: 70.0.170.000)
CP_Panorama1Config (Version: 70.0.170.000)
cp_PosterPrintConfig (Version: 70.0.170.000)
CueTour (Version: 70.0.170.000)
Destinations (Version: 70.0.170.000)
DeviceManagementQFolder (Version: 1.00.0000)
DocProc (Version: 7.0.0.0)
DocProcQFolder (Version: 1.00.0000)
DocumentViewer (Version: 70.0.170.000)
DocumentViewerQFolder (Version: 1.00.0000)
Dual-Core Optimizer (Version: 1.1.2.0151)
eSupportQFolder (Version: 1.00.0000)
FullDPAppQFolder (Version: 1.00.0000)
Google Chrome (Version: 29.0.1547.62)
Google Earth (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.153)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HexEdit (Version: 3.0.0)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
HiJackThis (Version: 1.0.0)
HP Backup and Recovery Manager (Version: 2.4)
HP Document Viewer 7.0 (Version: 7.0)
HP Help and Support (Version: 4.2.0010)
HP Imaging Device Functions 7.0 (Version: 7.0)
HP Photosmart Essential (Version: 1.9.1.3)
HP Photosmart Premier Software 6.5 (Version: 6.5)
HP Product Assistant (Version: 100.000.001.000)
HP Product Detection (Version: 11.14.0001)
HP Scanjet G3010 7.0 (Version: 7.0)
HP Solution Center 7.0 (Version: 7.0)
HP Update (Version: 5.003.001.001)
hpg3010 (Version: 7.0.0.0)
hpg3010QFolder (Version: 1.00.0000)
HPProductAssistant (Version: 70.0.170.000)
HpSdpAppCoreApp (Version: 3.00.0000)
HPSSupply (Version: 100.0.172.000)
InstantShareDevices (Version: 70.0.170.000)
InterVideo Register Manager (Version: 1.0.4.0)
InterVideo WinDVD (Version: 5.0-B11.1166)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 31 (Version: 6.0.310)
JavaFX 2.1.1 (Version: 2.1.1)
Logitech Desktop Messenger
Logitech MouseWare 9.42 .1
Logitech User's Guide
MailNavigator (Version: 1.14)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 Premium (Version: 9.00.2720)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 23.0.1 (x86 en-US) (Version: 23.0.1)
Mozilla Maintenance Service (Version: 23.0.1)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero Media Player
Nero OEM
Netflix Movie Viewer (Version: 1.2.211)
OCR Software by I.R.I.S 7.0 (Version: 7.0)
Ogg Codecs 0.81.15562 (Version: 0.81.15562)
PanoStandAlone (Version: 70.0.170.000)
Personal Ancestral File
Pet Eye Fix Guide Lite 1.3.2 (Version: 1.3.2)
Phenotype Predictor for Cats 2 (Version: 2.03)
PhotoGallery (Version: 70.0.170.000)
Picasa 3 (Version: 3.9)
PingPlotter Standard 3.30.4s (Version: 3.30.4s)
QuickTime (Version: 7.4.5.67)
RandMap (Version: 70.0.170.000)
RealDownloader (Version: 1.3.2)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.2)
Realtek High Definition Audio Driver (Version: 5.10.0.5591)
RealUpgrade 1.1 (Version: 1.1.0)
Scan (Version: 7.0.0.0)
ScannerCopy (Version: 7.0.0.0)
Shop for HP Supplies (Version: 10.0)
SkinsHP1 (Version: 70.0.170.000)
SlideShow (Version: 70.0.170.000)
SolutionCenter (Version: 70.0.170.000)
Sonic_PrimoSDK (Version: 70.0.170.000)
Tweak UI
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB2863058) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 70.0.170.000)
Windows Driver Package - Advanced Micro Devices (AmdK8) Processor  (05/27/2006 1.3.2.0) (Version: 05/27/2006 1.3.2.0)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell™ 1.0 (Version: 2)
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Memory info: ===================================

Percentage of memory in use: 19%
Total physical RAM: 2942.26 MB
Available physical RAM: 2374.64 MB
Total Pagefile: 7196.1 MB
Available Pagefile: 6765.91 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.43 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:222.86 GB) (Free:186.17 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:10 GB) (Free:3.86 GB) NTFS

========================= Users: ========================================

User accounts for \\HP26911982631

Administrator            ASPNET                   Guest                   
HelpAssistant            SUPPORT_388945a0        

**** End of log ****

 

21:06:24.0421 0x0658  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29

21:06:24.0781 0x0658  ============================================================

21:06:24.0781 0x0658  Current date / time: 2013/09/03 21:06:24.0781

21:06:24.0781 0x0658  SystemInfo:

21:06:24.0781 0x0658 

21:06:24.0781 0x0658  OS Version: 5.1.2600 ServicePack: 3.0

21:06:24.0781 0x0658  Product type: Workstation

21:06:24.0781 0x0658  ComputerName: HP26911982631

21:06:24.0781 0x0658  UserName: Administrator

21:06:24.0781 0x0658  Windows directory: C:\WINDOWS

21:06:24.0781 0x0658  System windows directory: C:\WINDOWS

21:06:24.0781 0x0658  Processor architecture: Intel x86

21:06:24.0781 0x0658  Number of processors: 2

21:06:24.0781 0x0658  Page size: 0x1000

21:06:24.0781 0x0658  Boot type: Normal boot

21:06:24.0781 0x0658  ============================================================

21:06:26.0203 0x0658  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054

21:06:26.0203 0x0658  ============================================================

21:06:26.0203 0x0658  \Device\Harddisk0\DR0:

21:06:26.0203 0x0658  MBR partitions:

21:06:26.0203 0x0658  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1BDBA326

21:06:26.0203 0x0658  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BDBE226, BlocksNum 0x140249A

21:06:26.0203 0x0658  ============================================================

21:06:26.0218 0x0658  C: <-> \Device\Harddisk0\DR0\Partition1

21:06:26.0250 0x0658  D: <-> \Device\Harddisk0\DR0\Partition2

21:06:26.0250 0x0658  ============================================================

21:06:26.0250 0x0658  Initialize success

21:06:26.0250 0x0658  ============================================================

21:06:28.0031 0x0c88  ============================================================

21:06:28.0031 0x0c88  Scan started

21:06:28.0031 0x0c88  Mode: Manual;

21:06:28.0031 0x0c88  ============================================================

21:06:28.0750 0x0c88  ================ Scan system memory ========================

21:06:28.0750 0x0c88  System memory - ok

21:06:28.0750 0x0c88  ================ Scan services =============================

21:06:28.0906 0x0c88  Abiosdsk - ok

21:06:28.0906 0x0c88  abp480n5 - ok

21:06:28.0937 0x0c88  [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc        C:\WINDOWS\system32\drivers\ac97intc.sys

21:06:28.0953 0x0c88  ac97intc - ok

21:06:29.0000 0x0c88  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys

21:06:29.0000 0x0c88  ACPI - ok

21:06:29.0031 0x0c88  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys

21:06:29.0031 0x0c88  ACPIEC - ok

21:06:29.0062 0x0c88  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys

21:06:29.0062 0x0c88  adpu160m - ok

21:06:29.0078 0x0c88  [ 0EA9B1F0C6C90A509C8603775366ADB7 ] adpu320         C:\WINDOWS\system32\DRIVERS\adpu320.sys

21:06:29.0093 0x0c88  adpu320 - ok

21:06:29.0125 0x0c88  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys

21:06:29.0140 0x0c88  aec - ok

21:06:29.0171 0x0c88  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys

21:06:29.0203 0x0c88  AFD - ok

21:06:29.0218 0x0c88  Aha154x - ok

21:06:29.0250 0x0c88  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys

21:06:29.0250 0x0c88  aic78u2 - ok

21:06:29.0265 0x0c88  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys

21:06:29.0281 0x0c88  aic78xx - ok

21:06:29.0312 0x0c88  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll

21:06:29.0312 0x0c88  Alerter - ok

21:06:29.0343 0x0c88  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe

21:06:29.0343 0x0c88  ALG - ok

21:06:29.0359 0x0c88  AliIde - ok

21:06:29.0375 0x0c88  [ EFBB0956BAED786E137351B5CA272AEF ] AmdK8           C:\WINDOWS\system32\DRIVERS\AmdK8.sys

21:06:29.0375 0x0c88  AmdK8 - ok

21:06:29.0421 0x0c88  [ E7314D43CD2BE981D8BC4826B50EAF05 ] AmdLLD          C:\WINDOWS\system32\DRIVERS\AmdLLD.sys

21:06:29.0453 0x0c88  AmdLLD - ok

21:06:29.0453 0x0c88  amsint - ok

21:06:29.0484 0x0c88  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll

21:06:29.0500 0x0c88  AppMgmt - ok

21:06:29.0515 0x0c88  asc - ok

21:06:29.0515 0x0c88  asc3350p - ok

21:06:29.0531 0x0c88  asc3550 - ok

21:06:29.0687 0x0c88  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

21:06:29.0734 0x0c88  aspnet_state - ok

21:06:29.0765 0x0c88  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys

21:06:29.0765 0x0c88  AsyncMac - ok

21:06:29.0796 0x0c88  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys

21:06:29.0796 0x0c88  atapi - ok

21:06:29.0812 0x0c88  Atdisk - ok

21:06:29.0875 0x0c88  [ AA3D8F59F0CD3552200C9FE1A7ED0D25 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe

21:06:29.0890 0x0c88  Ati HotKey Poller - ok

21:06:29.0984 0x0c88  [ 92E6E84D152D2ACC44936C1C89FF26C4 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys

21:06:30.0000 0x0c88  ati2mtag - ok

21:06:30.0031 0x0c88  [ 9B7056BC4E1332A4FAC22FFF2D6B8C7F ] atiide          C:\WINDOWS\system32\DRIVERS\atiide.sys

21:06:30.0046 0x0c88  atiide - ok

21:06:30.0078 0x0c88  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys

21:06:30.0078 0x0c88  Atmarpc - ok

21:06:30.0125 0x0c88  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll

21:06:30.0125 0x0c88  AudioSrv - ok

21:06:30.0171 0x0c88  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys

21:06:30.0171 0x0c88  audstub - ok

21:06:30.0312 0x0c88  [ C4D15594DB5BE042D3346EA58DF87D89 ] avg9wd          C:\Program Files\AVG\AVG9\avgwdsvc.exe

21:06:30.0312 0x0c88  avg9wd - ok

21:06:30.0359 0x0c88  [ A9F4D19DE72C738759330D10D35C4398 ] AvgLdx86        C:\WINDOWS\system32\Drivers\avgldx86.sys

21:06:30.0359 0x0c88  AvgLdx86 - ok

21:06:30.0406 0x0c88  [ 80FF2B1B7EEDA966394F0BAA895BBF4B ] AvgMfx86        C:\WINDOWS\system32\Drivers\avgmfx86.sys

21:06:30.0406 0x0c88  AvgMfx86 - ok

21:06:30.0453 0x0c88  [ 9A7A93388F503A34E7339AE7F9997449 ] AvgTdiX         C:\WINDOWS\system32\Drivers\avgtdix.sys

21:06:30.0453 0x0c88  AvgTdiX - ok

21:06:30.0468 0x0c88  [ 3A3A82FFD268BCFB7AE6A48CECF00AD9 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys

21:06:30.0484 0x0c88  b57w2k - ok

21:06:30.0531 0x0c88  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys

21:06:30.0531 0x0c88  Beep - ok

21:06:30.0578 0x0c88  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll

21:06:30.0640 0x0c88  BITS - ok

21:06:30.0687 0x0c88  [ 07A758BFFB297819252AA72BAB0E6611 ] Blfp            C:\WINDOWS\system32\DRIVERS\baspxp32.sys

21:06:30.0703 0x0c88  Blfp - ok

21:06:30.0734 0x0c88  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll

21:06:30.0734 0x0c88  Browser - ok

21:06:30.0750 0x0c88  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys

21:06:30.0765 0x0c88  cbidf2k - ok

21:06:30.0906 0x0c88  [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8         C:\Program Files\Canon\CAL\CALMAIN.exe

21:06:30.0953 0x0c88  CCALib8 - ok

21:06:30.0968 0x0c88  cd20xrnt - ok

21:06:31.0046 0x0c88  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys

21:06:31.0062 0x0c88  Cdaudio - ok

21:06:31.0125 0x0c88  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys

21:06:31.0156 0x0c88  Cdfs - ok

21:06:31.0187 0x0c88  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys

21:06:31.0203 0x0c88  Cdrom - ok

21:06:31.0203 0x0c88  Changer - ok

21:06:31.0250 0x0c88  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe

21:06:31.0250 0x0c88  CiSvc - ok

21:06:31.0281 0x0c88  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe

21:06:31.0296 0x0c88  ClipSrv - ok

21:06:31.0312 0x0c88  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

21:06:31.0437 0x0c88  clr_optimization_v2.0.50727_32 - ok

21:06:31.0453 0x0c88  CmdIde - ok

21:06:31.0468 0x0c88  COMSysApp - ok

21:06:31.0500 0x0c88  Cpqarray - ok

21:06:31.0546 0x0c88  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll

21:06:31.0546 0x0c88  CryptSvc - ok

21:06:31.0562 0x0c88  dac2w2k - ok

21:06:31.0578 0x0c88  dac960nt - ok

21:06:31.0640 0x0c88  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll

21:06:31.0656 0x0c88  DcomLaunch - ok

21:06:31.0703 0x0c88  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll

21:06:31.0703 0x0c88  Dhcp - ok

21:06:31.0718 0x0c88  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys

21:06:31.0734 0x0c88  Disk - ok

21:06:31.0750 0x0c88  dmadmin - ok

21:06:31.0812 0x0c88  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys

21:06:31.0843 0x0c88  dmboot - ok

21:06:31.0875 0x0c88  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys

21:06:31.0875 0x0c88  dmio - ok

21:06:31.0890 0x0c88  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys

21:06:31.0890 0x0c88  dmload - ok

21:06:31.0937 0x0c88  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll

21:06:31.0937 0x0c88  dmserver - ok

21:06:31.0984 0x0c88  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys

21:06:31.0984 0x0c88  DMusic - ok

21:06:32.0046 0x0c88  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll

21:06:32.0046 0x0c88  Dnscache - ok

21:06:32.0093 0x0c88  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll

21:06:32.0093 0x0c88  Dot3svc - ok

21:06:32.0125 0x0c88  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys

21:06:32.0125 0x0c88  dpti2o - ok

21:06:32.0140 0x0c88  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys

21:06:32.0140 0x0c88  drmkaud - ok

21:06:32.0156 0x0c88  [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys

21:06:32.0171 0x0c88  E100B - ok

21:06:32.0203 0x0c88  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll

21:06:32.0218 0x0c88  EapHost - ok

21:06:32.0234 0x0c88  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll

21:06:32.0234 0x0c88  ERSvc - ok

21:06:32.0265 0x0c88  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe

21:06:32.0296 0x0c88  Eventlog - ok

21:06:32.0343 0x0c88  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll

21:06:32.0343 0x0c88  EventSystem - ok

21:06:32.0390 0x0c88  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys

21:06:32.0406 0x0c88  Fastfat - ok

21:06:32.0437 0x0c88  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll

21:06:32.0437 0x0c88  FastUserSwitchingCompatibility - ok

21:06:32.0500 0x0c88  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys

21:06:32.0500 0x0c88  Fdc - ok

21:06:32.0515 0x0c88  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys

21:06:32.0515 0x0c88  Fips - ok

21:06:32.0546 0x0c88  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys

21:06:32.0562 0x0c88  Flpydisk - ok

21:06:32.0609 0x0c88  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys

21:06:32.0609 0x0c88  FltMgr - ok

21:06:32.0671 0x0c88  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

21:06:32.0687 0x0c88  FontCache3.0.0.0 - ok

21:06:32.0718 0x0c88  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys

21:06:32.0718 0x0c88  Fs_Rec - ok

21:06:32.0750 0x0c88  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys

21:06:32.0750 0x0c88  Ftdisk - ok

21:06:32.0781 0x0c88  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys

21:06:32.0781 0x0c88  Gpc - ok

21:06:32.0859 0x0c88  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe

21:06:32.0859 0x0c88  gupdate - ok

21:06:32.0875 0x0c88  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe

21:06:32.0875 0x0c88  gupdatem - ok

21:06:32.0921 0x0c88  [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

21:06:32.0921 0x0c88  gusvc - ok

21:06:32.0953 0x0c88  [ 2A013E7530BEAB6E569FAA83F517E836 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys

21:06:32.0968 0x0c88  HdAudAddService - ok

21:06:33.0000 0x0c88  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

21:06:33.0000 0x0c88  HDAudBus - ok

21:06:33.0093 0x0c88  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

21:06:33.0093 0x0c88  helpsvc - ok

21:06:33.0109 0x0c88  HidServ - ok

21:06:33.0140 0x0c88  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys

21:06:33.0140 0x0c88  HidUsb - ok

21:06:33.0171 0x0c88  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll

21:06:33.0187 0x0c88  hkmsvc - ok

21:06:33.0203 0x0c88  hpn - ok

21:06:33.0250 0x0c88  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys

21:06:33.0250 0x0c88  HTTP - ok

21:06:33.0296 0x0c88  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll

21:06:33.0312 0x0c88  HTTPFilter - ok

21:06:33.0312 0x0c88  i2omgmt - ok

21:06:33.0328 0x0c88  i2omp - ok

21:06:33.0343 0x0c88  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys

21:06:33.0359 0x0c88  i8042prt - ok

21:06:33.0375 0x0c88  [ 06B7EF73BA5F302EECC294CDF7E19702 ] i81x            C:\WINDOWS\system32\DRIVERS\i81xnt5.sys

21:06:33.0390 0x0c88  i81x - ok

21:06:33.0421 0x0c88  [ 7B5B44EFE5EB9DADFB8EE29700885D23 ] iAimFP0         C:\WINDOWS\system32\DRIVERS\wADV01nt.sys

21:06:33.0421 0x0c88  iAimFP0 - ok

21:06:33.0437 0x0c88  [ EB1F6BAB6C22EDE0BA551B527475F7E9 ] iAimFP1         C:\WINDOWS\system32\DRIVERS\wADV02NT.sys

21:06:33.0437 0x0c88  iAimFP1 - ok

21:06:33.0453 0x0c88  [ 03CE989D846C1AA81145CB22FCB86D06 ] iAimFP2         C:\WINDOWS\system32\DRIVERS\wADV05NT.sys

21:06:33.0453 0x0c88  iAimFP2 - ok

21:06:33.0468 0x0c88  [ 525849B4469DE021D5D61B4DB9BE3A9D ] iAimFP3         C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys

21:06:33.0468 0x0c88  iAimFP3 - ok

21:06:33.0484 0x0c88  [ 589C2BCDB5BD602BF7B63D210407EF8C ] iAimFP4         C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys

21:06:33.0484 0x0c88  iAimFP4 - ok

21:06:33.0500 0x0c88  [ 0308AEF61941E4AF478FA1A0F83812F5 ] iAimFP5         C:\WINDOWS\system32\DRIVERS\wADV07nt.sys

21:06:33.0500 0x0c88  iAimFP5 - ok

21:06:33.0500 0x0c88  [ 714038A8AA5DE08E12062202CD7EAEB5 ] iAimFP6         C:\WINDOWS\system32\DRIVERS\wADV08nt.sys

21:06:33.0500 0x0c88  iAimFP6 - ok

21:06:33.0515 0x0c88  [ 7BB3AA595E4507A788DE1CDC63F4C8C4 ] iAimFP7         C:\WINDOWS\system32\DRIVERS\wADV09nt.sys

21:06:33.0515 0x0c88  iAimFP7 - ok

21:06:33.0531 0x0c88  [ D83BDD5C059667A2F647A6BE5703A4D2 ] iAimTV0         C:\WINDOWS\system32\DRIVERS\wATV01nt.sys

21:06:33.0531 0x0c88  iAimTV0 - ok

21:06:33.0546 0x0c88  [ ED968D23354DAA0D7C621580C012A1F6 ] iAimTV1         C:\WINDOWS\system32\DRIVERS\wATV02NT.sys

21:06:33.0546 0x0c88  iAimTV1 - ok

21:06:33.0562 0x0c88  [ D738273F218A224C1DDAC04203F27A84 ] iAimTV3         C:\WINDOWS\system32\DRIVERS\wATV04nt.sys

21:06:33.0562 0x0c88  iAimTV3 - ok

21:06:33.0578 0x0c88  [ 0052D118995CBAB152DAABE6106D1442 ] iAimTV4         C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys

21:06:33.0578 0x0c88  iAimTV4 - ok

21:06:33.0593 0x0c88  [ 791CC45DE6E50445BE72E8AD6401FF45 ] iAimTV5         C:\WINDOWS\system32\DRIVERS\wATV10nt.sys

21:06:33.0593 0x0c88  iAimTV5 - ok

21:06:33.0640 0x0c88  [ 352FA0E98BC461CE1CE5D41F64DB558D ] iAimTV6         C:\WINDOWS\system32\DRIVERS\wATV06nt.sys

21:06:33.0640 0x0c88  iAimTV6 - ok

21:06:33.0703 0x0c88  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

21:06:33.0703 0x0c88  IDriverT - ok

21:06:33.0765 0x0c88  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

21:06:33.0796 0x0c88  idsvc - ok

21:06:33.0828 0x0c88  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys

21:06:33.0828 0x0c88  Imapi - ok

21:06:33.0875 0x0c88  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe

21:06:33.0875 0x0c88  ImapiService - ok

21:06:33.0890 0x0c88  ini910u - ok

21:06:34.0046 0x0c88  [ A7D3A1B2CABDAB81EAD07C204ADB7CE1 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys

21:06:34.0078 0x0c88  IntcAzAudAddService - ok

21:06:34.0109 0x0c88  [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys

21:06:34.0109 0x0c88  IntelIde - ok

21:06:34.0140 0x0c88  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys

21:06:34.0140 0x0c88  Ip6Fw - ok

21:06:34.0171 0x0c88  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

21:06:34.0187 0x0c88  IpFilterDriver - ok

21:06:34.0218 0x0c88  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys

21:06:34.0218 0x0c88  IpInIp - ok

21:06:34.0250 0x0c88  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys

21:06:34.0265 0x0c88  IpNat - ok

21:06:34.0296 0x0c88  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys

21:06:34.0296 0x0c88  IPSec - ok

21:06:34.0328 0x0c88  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys

21:06:34.0328 0x0c88  IRENUM - ok

21:06:34.0359 0x0c88  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys

21:06:34.0375 0x0c88  isapnp - ok

21:06:34.0421 0x0c88  [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr       C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

21:06:34.0421 0x0c88  IviRegMgr - ok

21:06:34.0500 0x0c88  [ 4F4D4AA1E0849FECC0CF5AACD59030B5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe

21:06:34.0515 0x0c88  JavaQuickStarterService - ok

21:06:34.0546 0x0c88  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys

21:06:34.0546 0x0c88  Kbdclass - ok

21:06:34.0593 0x0c88  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys

21:06:34.0609 0x0c88  kmixer - ok

21:06:34.0625 0x0c88  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys

21:06:34.0625 0x0c88  KSecDD - ok

21:06:34.0671 0x0c88  [ CB129B5B0E47B0F34BE950939DA52E7F ] l8042pr2        C:\WINDOWS\system32\DRIVERS\L8042Pr2.sys

21:06:34.0703 0x0c88  l8042pr2 - ok

21:06:34.0734 0x0c88  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll

21:06:34.0750 0x0c88  lanmanserver - ok

21:06:34.0781 0x0c88  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

21:06:34.0796 0x0c88  lanmanworkstation - ok

21:06:34.0812 0x0c88  Lavasoft Kernexplorer - ok

21:06:34.0828 0x0c88  Lbd - ok

21:06:34.0843 0x0c88  lbrtfdc - ok

21:06:34.0875 0x0c88  [ E8E25EDB0D3AB0BC459405BCAF824FDF ] LHidFlt2        C:\WINDOWS\system32\DRIVERS\LHidFlt2.sys

21:06:34.0875 0x0c88  LHidFlt2 - ok

21:06:34.0890 0x0c88  [ FF683C656AC51E28AFE5CCB53A4BD247 ] LHidUsb         C:\WINDOWS\system32\drivers\LHidUsb.Sys

21:06:34.0890 0x0c88  LHidUsb - ok

21:06:34.0937 0x0c88  [ 18E48E9D5683860773A078C7C3837DAF ] LKbdFlt2        C:\WINDOWS\system32\DRIVERS\LKbdFlt2.sys

21:06:34.0937 0x0c88  LKbdFlt2 - ok

21:06:34.0968 0x0c88  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll

21:06:34.0968 0x0c88  LmHosts - ok

21:06:34.0984 0x0c88  [ D1D5F7CBECEF5C0C9F019B0C534BE289 ] LMouFlt2        C:\WINDOWS\system32\DRIVERS\LMouFlt2.sys

21:06:34.0984 0x0c88  LMouFlt2 - ok

21:06:35.0015 0x0c88  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll

21:06:35.0015 0x0c88  Messenger - ok

21:06:35.0046 0x0c88  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys

21:06:35.0046 0x0c88  mnmdd - ok

21:06:35.0078 0x0c88  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe

21:06:35.0078 0x0c88  mnmsrvc - ok

21:06:35.0109 0x0c88  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys

21:06:35.0109 0x0c88  Modem - ok

21:06:35.0140 0x0c88  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys

21:06:35.0140 0x0c88  Mouclass - ok

21:06:35.0187 0x0c88  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys

21:06:35.0187 0x0c88  mouhid - ok

21:06:35.0218 0x0c88  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys

21:06:35.0234 0x0c88  MountMgr - ok

21:06:35.0265 0x0c88  [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

21:06:35.0281 0x0c88  MozillaMaintenance - ok

21:06:35.0281 0x0c88  mraid35x - ok

21:06:35.0296 0x0c88  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys

21:06:35.0296 0x0c88  MRxDAV - ok

21:06:35.0343 0x0c88  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

21:06:35.0375 0x0c88  MRxSmb - ok

21:06:35.0390 0x0c88  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe

21:06:35.0390 0x0c88  MSDTC - ok

21:06:35.0406 0x0c88  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys

21:06:35.0421 0x0c88  Msfs - ok

21:06:35.0421 0x0c88  MSIServer - ok

21:06:35.0453 0x0c88  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys

21:06:35.0468 0x0c88  MSKSSRV - ok

21:06:35.0484 0x0c88  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys

21:06:35.0484 0x0c88  MSPCLOCK - ok

21:06:35.0500 0x0c88  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys

21:06:35.0500 0x0c88  MSPQM - ok

21:06:35.0546 0x0c88  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys

21:06:35.0546 0x0c88  mssmbios - ok

21:06:35.0578 0x0c88  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys

21:06:35.0593 0x0c88  Mup - ok

21:06:35.0656 0x0c88  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll

21:06:35.0687 0x0c88  napagent - ok

21:06:35.0734 0x0c88  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys

21:06:35.0734 0x0c88  NDIS - ok

21:06:35.0781 0x0c88  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys

21:06:35.0796 0x0c88  NdisTapi - ok

21:06:35.0843 0x0c88  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys

21:06:35.0843 0x0c88  Ndisuio - ok

21:06:35.0859 0x0c88  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys

21:06:35.0875 0x0c88  NdisWan - ok

21:06:35.0906 0x0c88  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys

21:06:35.0906 0x0c88  NDProxy - ok

21:06:35.0921 0x0c88  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys

21:06:35.0921 0x0c88  NetBIOS - ok

21:06:35.0968 0x0c88  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys

21:06:35.0968 0x0c88  NetBT - ok

21:06:36.0015 0x0c88  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe

21:06:36.0015 0x0c88  NetDDE - ok

21:06:36.0031 0x0c88  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe

21:06:36.0031 0x0c88  NetDDEdsdm - ok

21:06:36.0078 0x0c88  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe

21:06:36.0078 0x0c88  Netlogon - ok

21:06:36.0140 0x0c88  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll

21:06:36.0140 0x0c88  Netman - ok

21:06:36.0171 0x0c88  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

21:06:36.0187 0x0c88  NetTcpPortSharing - ok

21:06:36.0234 0x0c88  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll

21:06:36.0234 0x0c88  Nla - ok

21:06:36.0250 0x0c88  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys

21:06:36.0265 0x0c88  Npfs - ok

21:06:36.0328 0x0c88  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys

21:06:36.0343 0x0c88  Ntfs - ok

21:06:36.0359 0x0c88  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe

21:06:36.0359 0x0c88  NtLmSsp - ok

21:06:36.0406 0x0c88  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll

21:06:36.0437 0x0c88  NtmsSvc - ok

21:06:36.0468 0x0c88  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys

21:06:36.0468 0x0c88  Null - ok

21:06:36.0515 0x0c88  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

21:06:36.0515 0x0c88  NwlnkFlt - ok

21:06:36.0531 0x0c88  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

21:06:36.0531 0x0c88  NwlnkFwd - ok

21:06:36.0578 0x0c88  [ C90018BAFDC7098619A4A95B046B30F3 ] P3              C:\WINDOWS\system32\DRIVERS\p3.sys

21:06:36.0593 0x0c88  P3 - ok

21:06:36.0656 0x0c88  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys

21:06:36.0656 0x0c88  Parport - ok

21:06:36.0687 0x0c88  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys

21:06:36.0687 0x0c88  PartMgr - ok

21:06:36.0718 0x0c88  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys

21:06:36.0718 0x0c88  ParVdm - ok

21:06:36.0796 0x0c88  [ 2A42DDAEAAE7743C55A3FA68A7AD9538 ] PCA             C:\WINDOWS\SMINST\PCAngel.exe

21:06:36.0812 0x0c88  PCA - ok

21:06:36.0828 0x0c88  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys

21:06:36.0828 0x0c88  PCI - ok

21:06:36.0843 0x0c88  PCIDump - ok

21:06:36.0859 0x0c88  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys

21:06:36.0859 0x0c88  PCIIde - ok

21:06:36.0890 0x0c88  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys

21:06:36.0906 0x0c88  Pcmcia - ok

21:06:36.0906 0x0c88  PDCOMP - ok

21:06:36.0921 0x0c88  PDFRAME - ok

21:06:36.0937 0x0c88  PDRELI - ok

21:06:36.0953 0x0c88  PDRFRAME - ok

21:06:36.0984 0x0c88  perc2 - ok

21:06:36.0984 0x0c88  perc2hib - ok

21:06:37.0031 0x0c88  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe

21:06:37.0031 0x0c88  PlugPlay - ok

21:06:37.0031 0x0c88  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe

21:06:37.0031 0x0c88  PolicyAgent - ok

21:06:37.0062 0x0c88  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys

21:06:37.0062 0x0c88  PptpMiniport - ok

21:06:37.0078 0x0c88  [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys

21:06:37.0078 0x0c88  Processor - ok

21:06:37.0093 0x0c88  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

21:06:37.0093 0x0c88  ProtectedStorage - ok

21:06:37.0109 0x0c88  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys

21:06:37.0109 0x0c88  PSched - ok

21:06:37.0140 0x0c88  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys

21:06:37.0140 0x0c88  Ptilink - ok

21:06:37.0140 0x0c88  [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys

21:06:37.0140 0x0c88  PxHelp20 - ok

21:06:37.0156 0x0c88  ql1080 - ok

21:06:37.0156 0x0c88  Ql10wnt - ok

21:06:37.0171 0x0c88  ql12160 - ok

21:06:37.0187 0x0c88  ql1240 - ok

21:06:37.0187 0x0c88  ql1280 - ok

21:06:37.0203 0x0c88  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys

21:06:37.0203 0x0c88  RasAcd - ok

21:06:37.0250 0x0c88  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll

21:06:37.0250 0x0c88  RasAuto - ok

21:06:37.0281 0x0c88  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

21:06:37.0281 0x0c88  Rasl2tp - ok

21:06:37.0312 0x0c88  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll

21:06:37.0312 0x0c88  RasMan - ok

21:06:37.0328 0x0c88  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys

21:06:37.0328 0x0c88  RasPppoe - ok

21:06:37.0343 0x0c88  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys

21:06:37.0343 0x0c88  Raspti - ok

21:06:37.0375 0x0c88  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys

21:06:37.0375 0x0c88  Rdbss - ok

21:06:37.0390 0x0c88  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

21:06:37.0390 0x0c88  RDPCDD - ok

21:06:37.0406 0x0c88  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys

21:06:37.0421 0x0c88  rdpdr - ok

21:06:37.0453 0x0c88  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys

21:06:37.0453 0x0c88  RDPWD - ok

21:06:37.0484 0x0c88  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe

21:06:37.0484 0x0c88  RDSessMgr - ok

21:06:37.0562 0x0c88  [ B2D01290C0E0465ACA54C2088E947823 ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

21:06:37.0562 0x0c88  RealNetworks Downloader Resolver Service - ok

21:06:37.0578 0x0c88  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys

21:06:37.0578 0x0c88  redbook - ok

21:06:37.0625 0x0c88  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll

21:06:37.0625 0x0c88  RemoteAccess - ok

21:06:37.0671 0x0c88  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll

21:06:37.0671 0x0c88  RemoteRegistry - ok

21:06:37.0687 0x0c88  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe

21:06:37.0703 0x0c88  RpcLocator - ok

21:06:37.0734 0x0c88  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\System32\rpcss.dll

21:06:37.0734 0x0c88  RpcSs - ok

21:06:37.0812 0x0c88  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe

21:06:37.0828 0x0c88  RSVP - ok

21:06:37.0828 0x0c88  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe

21:06:37.0828 0x0c88  SamSs - ok

21:06:37.0875 0x0c88  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe

21:06:37.0875 0x0c88  SCardSvr - ok

21:06:37.0921 0x0c88  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll

21:06:37.0921 0x0c88  Schedule - ok

21:06:37.0968 0x0c88  [ 72DFFA33F8ED1C847075EEE2C1E790EE ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys

21:06:37.0968 0x0c88  Secdrv - ok

21:06:38.0000 0x0c88  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll

21:06:38.0015 0x0c88  seclogon - ok

21:06:38.0046 0x0c88  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll

21:06:38.0046 0x0c88  SENS - ok

21:06:38.0078 0x0c88  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys

21:06:38.0078 0x0c88  serenum - ok

21:06:38.0125 0x0c88  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys

21:06:38.0140 0x0c88  Serial - ok

21:06:38.0203 0x0c88  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\DRIVERS\sfloppy.sys

21:06:38.0203 0x0c88  Sfloppy - ok

21:06:38.0250 0x0c88  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll

21:06:38.0250 0x0c88  SharedAccess - ok

21:06:38.0296 0x0c88  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

21:06:38.0296 0x0c88  ShellHWDetection - ok

21:06:38.0312 0x0c88  Simbad - ok

21:06:38.0328 0x0c88  Sparrow - ok

21:06:38.0359 0x0c88  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys

21:06:38.0375 0x0c88  splitter - ok

21:06:38.0421 0x0c88  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe

21:06:38.0437 0x0c88  Spooler - ok

21:06:38.0484 0x0c88  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys

21:06:38.0484 0x0c88  sr - ok

21:06:38.0531 0x0c88  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll

21:06:38.0531 0x0c88  srservice - ok

21:06:38.0578 0x0c88  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys

21:06:38.0578 0x0c88  Srv - ok

21:06:38.0625 0x0c88  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll

21:06:38.0640 0x0c88  SSDPSRV - ok

21:06:38.0687 0x0c88  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll

21:06:38.0703 0x0c88  stisvc - ok

21:06:38.0750 0x0c88  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys

21:06:38.0750 0x0c88  swenum - ok

21:06:38.0812 0x0c88  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys

21:06:38.0812 0x0c88  swmidi - ok

21:06:38.0828 0x0c88  SwPrv - ok

21:06:38.0875 0x0c88  [ 1FF3217614018630D0A6758630FC698C ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys

21:06:38.0875 0x0c88  symc810 - ok

21:06:38.0921 0x0c88  [ 070E001D95CF725186EF8B20335F933C ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys

21:06:38.0937 0x0c88  symc8xx - ok

21:06:38.0968 0x0c88  [ 993C0CB4BEDDDEBF7254191EC8A3F67E ] symlcbrd        C:\WINDOWS\system32\drivers\symlcbrd.sys

21:06:38.0968 0x0c88  symlcbrd - ok

21:06:39.0000 0x0c88  [ F2B7E8416F508368AC6730E2AE1C614F ] Symmpi          C:\WINDOWS\system32\DRIVERS\symmpi.sys

21:06:39.0000 0x0c88  Symmpi - ok

21:06:39.0031 0x0c88  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys

21:06:39.0031 0x0c88  sym_hi - ok

21:06:39.0046 0x0c88  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys

21:06:39.0046 0x0c88  sym_u3 - ok

21:06:39.0078 0x0c88  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys

21:06:39.0093 0x0c88  sysaudio - ok

21:06:39.0125 0x0c88  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe

21:06:39.0125 0x0c88  SysmonLog - ok

21:06:39.0171 0x0c88  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll

21:06:39.0171 0x0c88  TapiSrv - ok

21:06:39.0250 0x0c88  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys

21:06:39.0250 0x0c88  Tcpip - ok

21:06:39.0296 0x0c88  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys

21:06:39.0296 0x0c88  TDPIPE - ok

21:06:39.0343 0x0c88  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys

21:06:39.0343 0x0c88  TDTCP - ok

21:06:39.0390 0x0c88  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys

21:06:39.0390 0x0c88  TermDD - ok

21:06:39.0437 0x0c88  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll

21:06:39.0453 0x0c88  TermService - ok

21:06:39.0484 0x0c88  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll

21:06:39.0484 0x0c88  Themes - ok

21:06:39.0531 0x0c88  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe

21:06:39.0546 0x0c88  TlntSvr - ok

21:06:39.0562 0x0c88  TosIde - ok

21:06:39.0625 0x0c88  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll

21:06:39.0625 0x0c88  TrkWks - ok

21:06:39.0656 0x0c88  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys

21:06:39.0671 0x0c88  Udfs - ok

21:06:39.0671 0x0c88  ultra - ok

21:06:39.0718 0x0c88  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll

21:06:39.0734 0x0c88  upnphost - ok

21:06:39.0765 0x0c88  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe

21:06:39.0781 0x0c88  UPS - ok

21:06:39.0828 0x0c88  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys

21:06:39.0828 0x0c88  usbehci - ok

21:06:39.0875 0x0c88  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys

21:06:39.0890 0x0c88  usbhub - ok

21:06:39.0937 0x0c88  [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys

21:06:39.0937 0x0c88  usbohci - ok

21:06:39.0968 0x0c88  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys

21:06:39.0984 0x0c88  usbscan - ok

21:06:40.0000 0x0c88  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

21:06:40.0000 0x0c88  USBSTOR - ok

21:06:40.0031 0x0c88  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys

21:06:40.0031 0x0c88  usbuhci - ok

21:06:40.0078 0x0c88  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys

21:06:40.0078 0x0c88  VgaSave - ok

21:06:40.0109 0x0c88  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys

21:06:40.0109 0x0c88  ViaIde - ok

21:06:40.0140 0x0c88  [ 1B8F371423BB41426632B704A0FD466E ] VirtDisk        c:\windows\sminst\VirtDisk.sys

21:06:40.0156 0x0c88  VirtDisk - ok

21:06:40.0187 0x0c88  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys

21:06:40.0203 0x0c88  VolSnap - ok

21:06:40.0250 0x0c88  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe

21:06:40.0265 0x0c88  VSS - ok

21:06:40.0312 0x0c88  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll

21:06:40.0312 0x0c88  W32Time - ok

21:06:40.0375 0x0c88  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys

21:06:40.0375 0x0c88  Wanarp - ok

21:06:40.0390 0x0c88  WDICA - ok

21:06:40.0406 0x0c88  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys

21:06:40.0421 0x0c88  wdmaud - ok

21:06:40.0468 0x0c88  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll

21:06:40.0468 0x0c88  WebClient - ok

21:06:40.0546 0x0c88  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll

21:06:40.0562 0x0c88  winmgmt - ok

21:06:40.0609 0x0c88  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll

21:06:40.0625 0x0c88  WmdmPmSN - ok

21:06:40.0671 0x0c88  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll

21:06:40.0703 0x0c88  Wmi - ok

21:06:40.0750 0x0c88  [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys

21:06:40.0750 0x0c88  WmiAcpi - ok

21:06:40.0796 0x0c88  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe

21:06:40.0796 0x0c88  WmiApSrv - ok

21:06:40.0906 0x0c88  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe

21:06:40.0968 0x0c88  WMPNetworkSvc - ok

21:06:41.0000 0x0c88  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll

21:06:41.0031 0x0c88  wscsvc - ok

21:06:41.0062 0x0c88  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll

21:06:41.0062 0x0c88  wuauserv - ok

21:06:41.0093 0x0c88  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys

21:06:41.0109 0x0c88  WudfPf - ok

21:06:41.0140 0x0c88  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll

21:06:41.0156 0x0c88  WudfSvc - ok

21:06:41.0218 0x0c88  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll

21:06:41.0234 0x0c88  WZCSVC - ok

21:06:41.0281 0x0c88  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll

21:06:41.0312 0x0c88  xmlprov - ok

21:06:41.0312 0x0c88  ================ Scan global ===============================

21:06:41.0343 0x0c88  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll

21:06:41.0375 0x0c88  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll

21:06:41.0406 0x0c88  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll

21:06:41.0437 0x0c88  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe

21:06:41.0437 0x0c88  [Global] - ok

21:06:41.0437 0x0c88  ================ Scan MBR ==================================

21:06:41.0453 0x0c88  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0

21:06:41.0640 0x0c88  \Device\Harddisk0\DR0 - ok

21:06:41.0640 0x0c88  ================ Scan VBR ==================================

21:06:41.0656 0x0c88  [ FDB3F8035CA6DCFB958E9F3426FB3E6A ] \Device\Harddisk0\DR0\Partition1

21:06:41.0656 0x0c88  \Device\Harddisk0\DR0\Partition1 - ok

21:06:41.0687 0x0c88  [ AE1C9C1B037F450C73DB301B5C7017E4 ] \Device\Harddisk0\DR0\Partition2

21:06:41.0687 0x0c88  \Device\Harddisk0\DR0\Partition2 - ok

21:06:41.0687 0x0c88  ============================================================

21:06:41.0687 0x0c88  Scan finished

21:06:41.0687 0x0c88  ============================================================

21:06:41.0703 0x0c18  Detected object count: 0

21:06:41.0703 0x0c18  Actual detected object count: 0

 

# AdwCleaner v3.002 - Report created 03/09/2013 at 21:09:21

# Updated 01/09/2013 by Xplode

# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)

# Username : Administrator - HP26911982631

# Running from : C:\Documents and Settings\Administrator\My Documents\AdwCleaner.exe

# Option : Scan

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

Folder Found C:\Documents and Settings\Administrator\IECompatCache

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Key Found : HKCU\Software\YahooPartnerToolbar

Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}

Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

Product Found : Google Update Helper

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v8.0.6001.18702

 

 

-\\ Mozilla Firefox v23.0.1 (en-US)

 

[ File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\zcj42vlk.default\prefs.js ]

 

 

-\\ Google Chrome v29.0.1547.62

 

[ File : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

 

 

*************************

 

AdwCleaner[R0].txt - [1947 octets] - [03/09/2013 21:09:21]

 

 

 

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2007 octets] ##########



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:26 AM

Posted 03 September 2013 - 09:29 PM

Hi, OK we'll look at that when it comes.
 
 
Double click on AdwCleaner.exe to run the tool again.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished... <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
In control panel ,uninstall these outdated and exploitable items.

Adobe Reader 9.5.5 (Version: 9.5.5)
HiJackThis (Version: 1.0.0)
Java™ 6 Update 31 (Version: 6.0.310)
Reboot

Download the latest AVG if that's what you want to use and save it to the desktop.
Then uninstall AVG Free 9.0 .. reboot and install the new one.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 bourgja2

bourgja2
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:11:26 AM

Posted 04 September 2013 - 05:31 AM

As requested here are the two additional logs:

 

 AdwCleaner v3.002 - Report created 04/09/2013 at 06:26:41
# Updated 01/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Administrator - HP26911982631
# Running from : C:\Documents and Settings\Administrator\My Documents\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\Administrator\IECompatCache

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Product Deleted : Google Update Helper

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\zcj42vlk.default\prefs.js ]

-\\ Google Chrome v29.0.1547.66

[ File : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [2087 octets] - [03/09/2013 21:09:21]
AdwCleaner[R1].txt - [2147 octets] - [04/09/2013 06:25:46]
AdwCleaner[S0].txt - [2094 octets] - [04/09/2013 06:26:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2154 octets] ##########

 

C:\Documents and Settings\Administrator\Local Settings\temp\jar_cache1451262819265978168.tmp multiple threats cleaned by deleting - quarantined
 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:26 AM

Posted 04 September 2013 - 08:13 PM

Looks good did update and run Malwarebytes lately? How is it now?

Edited by boopme, 04 September 2013 - 08:19 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 bourgja2

bourgja2
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:11:26 AM

Posted 05 September 2013 - 03:59 PM

Yes, I think everything is fine.  I guess it wasn't a big infection after all!



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:26 AM

Posted 05 September 2013 - 07:54 PM

That was just some adware , not the worst stuff.

Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can re-infect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state. The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup
  • to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically. Vista and Windows 7 users can refer to these links:
  • Create a New Restore Point in Vista
  • Create a New Restore Point in Windows 7 (alternate method)
  • Disk Cleanup in Vista
  • Disk Cleanup in Windows 7

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users